| Name: | unbound |
|---|---|
| Version: | 1.16.2 |
| Release: | 3.el9_3.1 |
| Architecture: | x86_64 |
| Group: | Unspecified |
| Size: | 3511241 |
| License: | BSD |
| RPM: | unbound-1.16.2-3.el9_3.1.x86_64.rpm |
| Source RPM: | unbound-1.16.2-3.el9_3.1.src.rpm |
| Build Date: | Wed Feb 28 2024 |
| Build Host: | build-ol9-x86_64.oracle.com |
| Vendor: | Oracle America |
| URL: | https://nlnetlabs.nl/projects/unbound/ |
| Summary: | Validating, recursive, and caching DNS(SEC) resolver |
| Description: | Unbound is a validating, recursive, and caching DNS(SEC) resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modular components, so that also DNSSEC (secure DNS) validation and stub-resolvers (that do not run as a server, but are linked into an application) are easily possible. |
- Fix DNSSEC validation vulnerabilities which can lead to DoS in trivially orchestrated attacks (CVE-2023-50387 and CVE-2023-50868)
- Fix NRDelegation attack leading to uncontrolled resource consumption (CVE-2022-3204)
- Require openssl tool for unbound-keygen (#2116802)
- Update to 1.16.2 (#2087120)
- Disable ED25519 and ED448 in FIPS mode (#2079548)
- Restart keygen service before every unbound start (#2094336)
- Update to 1.16.0 (#2087120)
- Update to 1.15.0 (#2030608) - Update icannbundle.pem
- Resolves: rhbz#1992985 unbound-1.13.2 is available - Use system-wide crypto policies
- Export unbound-devel to CRB repository (#2056116)