unbound-1.4.20-29.1.0.1.AXS4

エラータID: AXSA:2020-229:05

Release date: 
Thursday, July 23, 2020 - 06:22
Subject: 
unbound-1.4.20-29.1.0.1.AXS4
Affected Channels: 
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity: 
High
Description: 

Security Fix(es):

* unbound: amplification of an incoming query into a large number of queries directed to a target (CVE-2020-12662)

* unbound: infinite loop via malformed DNS answers received from upstream servers (CVE-2020-12663)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2020-12662
Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.
CVE-2020-12663
Unbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers.

Solution: 

Update packages.

CVEs: 
CVE-2020-12662
Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.
CVE-2020-12663
Unbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers.
Additional Info: 

N/A

Download: 

SRPMS
  1. unbound-1.4.20-29.1.0.1.AXS4.src.rpm
    MD5: 7b0017ea864b2fcf3bdf07ecb7850cc3
    SHA-256: ff20ec963c2e45ae35d850cc7b160e51bd5263b3af61f7f06ff139fead5f4f12
    Size: 3.51 MB

Asianux Server 4 for x86
  1. unbound-1.4.20-29.1.0.1.AXS4.i686.rpm
    MD5: e4b6d3c1eb98e20f2fcf152291e3648b
    SHA-256: 4b63ea944a5578e1dad591bd27e58e2b2a029cc016dab14830a97be402c61d87
    Size: 1.07 MB
  2. unbound-libs-1.4.20-29.1.0.1.AXS4.i686.rpm
    MD5: 776a28416a96c27597e609078cbc5dc0
    SHA-256: 61908e7875125693d9fb176338763883a42993226c2d6fc282b2b2526426ae00
    Size: 306.82 kB

Asianux Server 4 for x86_64
  1. unbound-1.4.20-29.1.0.1.AXS4.x86_64.rpm
    MD5: 21683780c12b448e523dad80e5547db3
    SHA-256: 6912f604b34219b69fcc2c257ded5f41a2d312a304aa85e7388872fe71626335
    Size: 1.05 MB
  2. unbound-libs-1.4.20-29.1.0.1.AXS4.x86_64.rpm
    MD5: 4388dcbe99d41d37c5b1b0fa31b1334b
    SHA-256: 869ac3305456dbc0c5f4ef90ff57c2e0719f9afae3a43be1a028b0adad97cb20
    Size: 305.51 kB
  3. unbound-libs-1.4.20-29.1.0.1.AXS4.i686.rpm
    MD5: 776a28416a96c27597e609078cbc5dc0
    SHA-256: 61908e7875125693d9fb176338763883a42993226c2d6fc282b2b2526426ae00
    Size: 306.82 kB