RLSA-2025:0837

Synopsis

Important: unbound security update

Description

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.

Security Fix(es):

* unbound: unrestricted reconfiguration enabled to anyone that may lead to local privilege escalation (CVE-2024-1488)

* unbound: Unbounded name compression could lead to Denial of Service (CVE-2024-8508)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2264183 2316321

CVEs

CVE-2024-1488 CVE-2024-8508

Affected packages

Rocky Linux 8 aarch64 - AppStream

python3-unbound-0:1.16.2-5.8.el8_10.aarch64.rpm python3-unbound-debuginfo-0:1.16.2-5.8.el8_10.aarch64.rpm unbound-0:1.16.2-5.8.el8_10.aarch64.rpm unbound-0:1.16.2-5.8.el8_10.src.rpm unbound-debuginfo-0:1.16.2-5.8.el8_10.aarch64.rpm unbound-debugsource-0:1.16.2-5.8.el8_10.aarch64.rpm unbound-devel-0:1.16.2-5.8.el8_10.aarch64.rpm unbound-libs-0:1.16.2-5.8.el8_10.aarch64.rpm unbound-libs-debuginfo-0:1.16.2-5.8.el8_10.aarch64.rpm

Rocky Linux 8 x86_64 - AppStream

python3-unbound-0:1.16.2-5.8.el8_10.x86_64.rpm python3-unbound-debuginfo-0:1.16.2-5.8.el8_10.x86_64.rpm unbound-0:1.16.2-5.8.el8_10.src.rpm unbound-0:1.16.2-5.8.el8_10.x86_64.rpm unbound-debuginfo-0:1.16.2-5.8.el8_10.i686.rpm unbound-debuginfo-0:1.16.2-5.8.el8_10.x86_64.rpm unbound-debugsource-0:1.16.2-5.8.el8_10.i686.rpm unbound-debugsource-0:1.16.2-5.8.el8_10.x86_64.rpm unbound-devel-0:1.16.2-5.8.el8_10.i686.rpm unbound-devel-0:1.16.2-5.8.el8_10.x86_64.rpm unbound-libs-0:1.16.2-5.8.el8_10.i686.rpm unbound-libs-0:1.16.2-5.8.el8_10.x86_64.rpm unbound-libs-debuginfo-0:1.16.2-5.8.el8_10.i686.rpm unbound-libs-debuginfo-0:1.16.2-5.8.el8_10.x86_64.rpm