[El-errata] ELSA-2024-11232 Moderate: Oracle Linux 9 unbound:1.16.2 security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Fri Dec 20 10:48:52 UTC 2024
Oracle Linux Security Advisory ELSA-2024-11232
http://linux.oracle.com/errata/ELSA-2024-11232.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
unbound-1.16.2-8.el9_5.1.x86_64.rpm
unbound-devel-1.16.2-8.el9_5.1.i686.rpm
unbound-devel-1.16.2-8.el9_5.1.x86_64.rpm
unbound-libs-1.16.2-8.el9_5.1.i686.rpm
unbound-libs-1.16.2-8.el9_5.1.x86_64.rpm
python3-unbound-1.16.2-8.el9_5.1.x86_64.rpm
aarch64:
python3-unbound-1.16.2-8.el9_5.1.aarch64.rpm
unbound-1.16.2-8.el9_5.1.aarch64.rpm
unbound-libs-1.16.2-8.el9_5.1.aarch64.rpm
unbound-devel-1.16.2-8.el9_5.1.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//unbound-1.16.2-8.el9_5.1.src.rpm
Related CVEs:
CVE-2024-8508
Description of changes:
[1.16.2-8.1]
- Fix unbounded name compression could lead to Denial of Service (CVE-2024-8508)
[1.16.2-8]
- Ensure group access correction reaches also updated configs (CVE-2024-1488)
[1.16.2-7]
- Ensure only unbound group can change configuration (CVE-2024-1488)
[1.16.2-6]
- Fix KeyTrap - Extreme CPU consumption in DNSSEC validator CVE-2023-50387
- Fix Preparing an NSEC3 closest encloser proof can exhaust CPU resources CVE-2023-50868
- Resolves: RHEL-25671
- Resolves: RHEL-25643
More information about the El-errata
mailing list