unbound-1.6.6-4.el7
エラータID: AXSA:2020-139:02
Release date:
Friday, June 12, 2020 - 12:23
Subject:
unbound-1.6.6-4.el7
Affected Channels:
Asianux Server 7 for x86_64
Severity:
High
Description:
The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.
Security Fix(es):
* unbound: amplification of an incoming query into a large number of queries directed to a target (CVE-2020-12662)
* unbound: infinite loop via malformed DNS answers received from upstream servers (CVE-2020-12663)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Solution:
Update packages.
CVEs:
CVE-2020-12662
Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.
Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.
CVE-2020-12663
Unbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers.
Unbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers.
Additional Info:
N/A
Download:
SRPMS
- unbound-1.6.6-4.el7.src.rpm
MD5: f16ce872a525564f54e31ab8e8644fa0
SHA-256: 046dab232fa963d2c17e9e9184f263d479b7f9f4894614ec4108106ea58e2d43
Size: 5.27 MB
Asianux Server 7 for x86_64
- unbound-1.6.6-4.el7.x86_64.rpm
MD5: 0f987c986281ff8f706443098600843d
SHA-256: 11a95ab96ea52f3594b7fe17fe5e7fe2168fe7254c65243334288980afe6933e
Size: 673.11 kB - unbound-libs-1.6.6-4.el7.x86_64.rpm
MD5: cebca190e84da79988c1e9a4551e32bc
SHA-256: 0414a7fdb264d3951205ab2461a1698ae4701a38916233e4991dbae1fa0a63bd
Size: 404.84 kB - unbound-libs-1.6.6-4.el7.i686.rpm
MD5: 1d0fe0079ff911315861dd42289a6e41
SHA-256: 9b051486609b165406e0f8b8a88dc7455e55e6ddeff9d5120d4f33ea0c65528f
Size: 395.95 kB
日本語