ELSA-2024-0977

ELSA-2024-0977 - unbound security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2024-02-28

Description

[1.16.2-3.1]
- Fix DNSSEC validation vulnerabilities which can lead to DoS in trivially orchestrated attacks
(CVE-2023-50387 and CVE-2023-50868)

Related CVEs

CVE-2023-50868

CVE-2023-50387

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label
Oracle Linux 9 (aarch64)	unbound-1.16.2-3.el9_3.1.src.rpm	1750e618b6a20b257d910e4f984d52ff	-	ol9_aarch64_appstream
	unbound-1.16.2-3.el9_3.1.src.rpm	1750e618b6a20b257d910e4f984d52ff	-	ol9_aarch64_codeready_builder
	python3-unbound-1.16.2-3.el9_3.1.aarch64.rpm	789411478dee674940dc811de1ff06cb	-	ol9_aarch64_appstream
	unbound-1.16.2-3.el9_3.1.aarch64.rpm	93be4400708bc3dd423dc2c26eca91fe	-	ol9_aarch64_appstream
	unbound-devel-1.16.2-3.el9_3.1.aarch64.rpm	c23cb4a95923a7b60b6b8a9bf87956f9	-	ol9_aarch64_codeready_builder
	unbound-libs-1.16.2-3.el9_3.1.aarch64.rpm	f8408e7951e8e58c81c0d134c6304f0d	-	ol9_aarch64_appstream
Oracle Linux 9 (x86_64)	unbound-1.16.2-3.el9_3.1.src.rpm	1750e618b6a20b257d910e4f984d52ff	-	ol9_x86_64_appstream
	unbound-1.16.2-3.el9_3.1.src.rpm	1750e618b6a20b257d910e4f984d52ff	-	ol9_x86_64_codeready_builder
	python3-unbound-1.16.2-3.el9_3.1.x86_64.rpm	793a84b835fbe070579d73be289ee26a	-	ol9_x86_64_appstream
	unbound-1.16.2-3.el9_3.1.x86_64.rpm	1e110d5dbc98e4a7880d1f60d324aeed	-	ol9_x86_64_appstream
	unbound-devel-1.16.2-3.el9_3.1.i686.rpm	8c1499b21f42e964afb3e4530910275f	-	ol9_x86_64_codeready_builder
	unbound-devel-1.16.2-3.el9_3.1.x86_64.rpm	650ceee637cc05d257303ab5241698f7	-	ol9_x86_64_codeready_builder
	unbound-libs-1.16.2-3.el9_3.1.i686.rpm	f27d61b6848f8b7b033f8b98c16bd7c8	-	ol9_x86_64_appstream
	unbound-libs-1.16.2-3.el9_3.1.x86_64.rpm	f0c076dca59e1b020e0d6fa390097c18	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team