Sicherheit: Zwei Probleme in unbound
Aktuelle Meldungen Distributionen
Name: Zwei Probleme in unbound
ID: FEDORA-2020-3cfd38fefd
Distribution: Fedora
Plattformen: Fedora 32
Datum: So, 24. Mai 2020, 09:20
Referenzen: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12663
Applikationen: Unbound


Fedora Update Notification
2020-05-24 03:27:16.087566

Name : unbound
Product : Fedora 32
Version : 1.10.1
Release : 1.fc32
URL : https://nlnetlabs.nl/projects/unbound/
Summary : Validating, recursive, and caching DNS(SEC) resolver
Description :
Unbound is a validating, recursive, and caching DNS(SEC) resolver.

The C implementation of Unbound is developed and maintained by NLnet
Labs. It is based on ideas and algorithms taken from a java prototype
developed by Verisign labs, Nominet, Kirei and ep.net.

Unbound is designed as a set of modular components, so that also
DNSSEC (secure DNS) validation and stub-resolvers (that do not run
as a server, but are linked into an application) are easily possible.

Update Information:

Security fix for CVE-2020-12662 and CVE-2020-12663

* Tue May 19 2020 Paul Wouters <pwouters@redhat.com> - 1.10.1-1
- Resolves: rhbz#1837279 unbound-1.10.1 is available
- Resolves: rhbz#1837598 CVE-2020-12662 unbound: insufficient control of
network message volume leads to DoS
- Resolves: rhbz#1837609 CVE-2020-12663 unbound: infinite loop via malformed
DNS answers received from upstream servers
- Updated unbound.conf for new options in 1.10.1

[ 1 ] Bug #1837597 - CVE-2020-12662 unbound: amplification of an incoming
query into a large number of queries directed to a target
[ 2 ] Bug #1837604 - CVE-2020-12663 unbound: infinite loop via malformed DNS
answers received from upstream servers

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-3cfd38fefd' at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Pro-Linux @Facebook
Neue Nachrichten