Fedora 42 Unbound Critical Update for Cache Poisoning CVE-2025-5994
fedora
July 19, 2025
Update to 1.23.1 (rhbz#2380450)
Summary
Unbound is a validating, recursive, and caching DNS(SEC) resolver.
The C implementation of Unbound is developed and maintained by NLnet
Labs. It is based on ideas and algorithms taken from a java prototype
developed by Verisign labs, Nominet, Kirei and ep.net.
Unbound is designed as a set of modular components, so that also
DNSSEC (secure DNS) validation and stub-resolvers (that do not run
as a server, but are linked into an application) are easily possible.
Update Information:
Update to 1.23.1 (rhbz#2380450)
Topics Covered
Change Log
* Thu Jul 17 2025 Tomas Korbar
* Tue Jun 10 2025 Python Maint
References
[ 1 ] Bug #2381426 - CVE-2025-5994 unbound: Unbound Cache poisoning [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2381426
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-350a4ec835' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: unbound
Product: Fedora 42
Version: 1.23.1
Release: 1.fc42
Summary: Validating, recursive, and caching DNS(SEC) resolver
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!