| Name: | unbound |
|---|---|
| Version: | 1.16.2 |
| Release: | 3.el9_3.5 |
| Architecture: | aarch64 |
| Group: | Unspecified |
| Size: | 3442251 |
| License: | BSD |
| RPM: | unbound-1.16.2-3.el9_3.5.aarch64.rpm |
| Source RPM: | unbound-1.16.2-3.el9_3.5.src.rpm |
| Build Date: | Wed Apr 10 2024 |
| Build Host: | build-ol9-aarch64.oracle.com |
| Vendor: | Oracle America |
| URL: | https://nlnetlabs.nl/projects/unbound/ |
| Summary: | Validating, recursive, and caching DNS(SEC) resolver |
| Description: | Unbound is a validating, recursive, and caching DNS(SEC) resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modular components, so that also DNSSEC (secure DNS) validation and stub-resolvers (that do not run as a server, but are linked into an application) are easily possible. |
- Rebuilt again with z-stream target
- Correct typo in new config file
- Ensure group access correction reaches also updated configs (CVE-2024-1488)
- Ensure only unbound group can change configuration (CVE-2024-1488)
- Fix KeyTrap - Extreme CPU consumption in DNSSEC validator CVE-2023-50387 - Fix Preparing an NSEC3 closest encloser proof can exhaust CPU resources CVE-2023-50868 - Resolves: RHEL-25642 - Resolves: RHEL-25670
- Fix NRDelegation attack leading to uncontrolled resource consumption (CVE-2022-3204)
- Require openssl tool for unbound-keygen (#2116802)
- Update to 1.16.2 (#2087120)
- Disable ED25519 and ED448 in FIPS mode (#2079548)
- Restart keygen service before every unbound start (#2094336)