| Name: | unbound |
|---|---|
| Version: | 1.6.6 |
| Release: | 5.el7_8 |
| Architecture: | x86_64 |
| Group: | System Environment/Daemons |
| Size: | 2536818 |
| License: | BSD |
| RPM: | unbound-1.6.6-5.el7_8.x86_64.rpm |
| Source RPM: | unbound-1.6.6-5.el7_8.src.rpm |
| Build Date: | Mon Jun 22 2020 |
| Build Host: | jenkins-10-147-72-125-a86b9b71-a28c-4d37-954d-24e723290a7a.appad3iad.osdevelopmeniad.oraclevcn.com |
| Vendor: | Oracle America |
| URL: | https://unbound.net/ |
| Summary: | Validating, recursive, and caching DNS(SEC) resolver |
| Description: | Unbound is a validating, recursive, and caching DNS(SEC) resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modular components, so that also DNSSEC (secure DNS) validation and stub-resolvers (that do not run as a server, but are linked into an application) are easily possible. |
- Fix incomplete amplifying-an-incoming-query patch - Resolves: rhbz#1846424
- Fix amplifying an incoming query into a large number of queries directed to a target - Resolves: rhbz#1839172 (CVE-2020-12662), rhbz#1840258 (CVE-2020-12663)
- Lower CPU usage on slow log I/O (#1775706)
- Do not search for DNSSEC info when domain-insecure is set for stub zone (#1678550) - Remove KSK-2010 from configuration files - it has been revoked (#1665503)
- Rebase to 1.6.6 - Enable RFC 8145 Trust Anchor Signaling to help the root zone get keytag statistics - Enable ipsecmod support
- Update project website and ICANN key
- Install unbound-event.h
- Rebase to 1.6.3
- Make merge of updated database more safe
- Update also built-in digest in unbound-anchor