Scientific Linux: SLSA-2020-2640-1 Critical: Unbound Loop and Amplification

unbound: amplification of an incoming query into a large number of queries directed to a target (CVE-2020-12662) * unbound: infinite loop via malformed DNS answers received from upstream servers (CVE-2020-12663) SL6 x86_64 unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.x86_64.rpm unbound-libs-1.4.20-29.el6_10.1.i686.rpm unbound-libs-1.4.2 [More...]

Synopsis:          Important: unbound security update
Advisory ID:       SLSA-2020:2640-1
Issue Date:        2020-06-22
CVE Numbers:       None
--

Security Fix(es):

* unbound: amplification of an incoming query into a large number of
queries directed to a target (CVE-2020-12662)

* unbound: infinite loop via malformed DNS answers received from upstream
servers (CVE-2020-12663)
--

SL6
  x86_64
    unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm
    unbound-debuginfo-1.4.20-29.el6_10.1.x86_64.rpm
    unbound-libs-1.4.20-29.el6_10.1.i686.rpm
    unbound-libs-1.4.20-29.el6_10.1.x86_64.rpm
    unbound-1.4.20-29.el6_10.1.x86_64.rpm
    unbound-devel-1.4.20-29.el6_10.1.i686.rpm
    unbound-devel-1.4.20-29.el6_10.1.x86_64.rpm
    unbound-python-1.4.20-29.el6_10.1.i686.rpm
    unbound-python-1.4.20-29.el6_10.1.x86_64.rpm
  i386
    unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm
    unbound-libs-1.4.20-29.el6_10.1.i686.rpm
    unbound-1.4.20-29.el6_10.1.i686.rpm
    unbound-devel-1.4.20-29.el6_10.1.i686.rpm
    unbound-python-1.4.20-29.el6_10.1.i686.rpm

- Scientific Linux Development Team