Advisories » MGASA-2022-0361

Updated unbound packages fix security vulnerability

Publication date: 08 Oct 2022
Modification date: 08 Oct 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-3204

Description

Non-Responsive Delegation Attack. (CVE-2022-3204)
Improves performance when under load, by cutting promiscuous queries for
nameserver discovery and limiting the number of times a delegation point
can look in the cache for missing records.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=30876
• https://github.com/NLnetLabs/unbound/releases/tag/release-1.16.3
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3204

SRPMS

8/core

• unbound-1.16.3-1.mga8