Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 0 articles for you...
100
security advisorySuSEbindSUSE 2026-2289-1 Major Memory Depletion Amplification Risks Identified
An update that solves three vulnerabilities can now be installed.. # Security update for bind Announcement ID: SUSE-SU-2026:2289-1 Release Date: 2026-06-05T14:30:08Z Rating: important References: * bsc#1265591 * bsc#1265592 * bsc#1265594 Cross-References: * CVE-2026-3039 * CVE-2026-3592 * CVE-2026-5946 CVSS scores: * CVE-2026-3039 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3039 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3592 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-3592 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-5946 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-5946 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for bind fixes the following issues: * CVE-2026-3039: BIND 9 server memory exhaustion during GSS-API TKEY negotiation (bsc#1265591). * CVE-2026-3592: Amplification vulnerabilities via self-pointed glue records (bsc#1265592). * CVE-2026-5946: Invalid handling of CLASS != IN (bsc#1265594). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2026-2289=1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2289=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS(aarch64 ppc64le s390x x86_64) * bind-debuginfo-9.11.22-3.71.1 * bind-utils-debuginfo-9.11.22-3.71.1 * libisccfg163-9.11.22-3.71.1 * bind-utils-9.11.22-3.71.1 * liblwres161-9.11.22-3.71.1 * libdns1110-9.11.22-3.71.1 * liblwres161-debuginfo-9.11.22-3.71.1 * libisccfg163-debuginfo-9.11.22-3.71.1 * bind-chrootenv-9.11.22-3.71.1 * libisccc161-9.11.22-3.71.1 * libirs161-debuginfo-9.11.22-3.71.1 * bind-debugsource-9.11.22-3.71.1 * bind-devel-9.11.22-3.71.1 * libbind9-161-debuginfo-9.11.22-3.71.1 * libdns1110-debuginfo-9.11.22-3.71.1 * libbind9-161-9.11.22-3.71.1 * bind-9.11.22-3.71.1 * libirs161-9.11.22-3.71.1 * libisc1107-debuginfo-9.11.22-3.71.1 * libisc1107-9.11.22-3.71.1 * libisccc161-debuginfo-9.11.22-3.71.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (noarch) * bind-doc-9.11.22-3.71.1 * python-bind-9.11.22-3.71.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (s390x x86_64) * libisc1107-32bit-9.11.22-3.71.1 * libisc1107-debuginfo-32bit-9.11.22-3.71.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * bind-debuginfo-9.11.22-3.71.1 * bind-utils-debuginfo-9.11.22-3.71.1 * libisc1107-debuginfo-32bit-9.11.22-3.71.1 * libisccfg163-9.11.22-3.71.1 * bind-utils-9.11.22-3.71.1 * libdns1110-9.11.22-3.71.1 * liblwres161-9.11.22-3.71.1 * liblwres161-debuginfo-9.11.22-3.71.1 * libisccfg163-debuginfo-9.11.22-3.71.1 * bind-chrootenv-9.11.22-3.71.1 * libisccc161-9.11.22-3.71.1 * libirs161-debuginfo-9.11.22-3.71.1 * bind-debugsource-9.11.22-3.71.1 * bind-devel-9.11.22-3.71.1 * libbind9-161-debuginfo-9.11.22-3.71.1 * libisc1107-32bit-9.11.22-3.71.1 * libdns1110-debuginfo-9.11.22-3.71.1 * libbind9-161-9.11.22-3.71.1 * bind-9.11.22-3.71.1 * libirs161-9.11.22-3.71.1 * libisc1107-debuginfo-9.11.22-3.71.1 * libisc1107-9.11.22-3.71.1 * libisccc161-debuginfo-9.11.22-3.71.1 * SUSE Linux Enterprise Server 12 SP5 LTSS ExtendedSecurity (noarch) * bind-doc-9.11.22-3.71.1 * python-bind-9.11.22-3.71.1 ## References: * https://www.suse.com/security/cve/CVE-2026-3039.html * https://www.suse.com/security/cve/CVE-2026-3592.html * https://www.suse.com/security/cve/CVE-2026-5946.html * https://bugzilla.suse.com/show_bug.cgi?id=1265591 * https://bugzilla.suse.com/show_bug.cgi?id=1265592 * https://bugzilla.suse.com/show_bug.cgi?id=1265594 . Install the important security update for bind addressing three issues, including memory exhaustion and amplification risks.. SUSE Bind Security Update, Important Update, Vulnerability Fix, Linux Patch, Memory Exhaustion. . Severity: Important. LinuxSecurity.com Team
Jun 05, 2026
•Important
SuSE
202
security advisorydenial of servicecode executionopenSUSE Leap 15.1: 2020:0912-1 Important: Unbound Denial Of Service
An update that fixes three vulnerabilities is now available.. openSUSE Security Update: Security update for unbound ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:0912-1 Rating: important References: #1157268 #1171889 Cross-References: CVE-2019-18934 CVE-2020-12662 CVE-2020-12663 Affected Products: openSUSE Leap 15.1 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for unbound fixes the following issues: - CVE-2020-12662: Fixed an issue where unbound could have been tricked into amplifying an incoming query into a large number of queries directed to a target (bsc#1171889). - CVE-2020-12663: Fixed an issue where malformed answers from upstream name servers could have been used to make unbound unresponsive (bsc#1171889). - CVE-2019-18934: Fixed a vulnerability in the IPSec module which could have allowed code execution after receiving a special crafted answer (bsc#1157268). This update was imported from the SUSE:SLE-15-SP1:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2020-912=1 Package List: - openSUSE Leap 15.1 (i586 x86_64): libunbound-devel-mini-1.6.8-lp151.8.3.1 libunbound-devel-mini-debuginfo-1.6.8-lp151.8.3.1 libunbound-devel-mini-debugsource-1.6.8-lp151.8.3.1 - openSUSE Leap 15.1 (noarch): unbound-munin-1.6.8-lp151.8.3.1 - openSUSE Leap 15.1 (x86_64): libunbound2-1.6.8-lp151.8.3.1 libunbound2-debuginfo-1.6.8-lp151.8.3.1 unbound-1.6.8-lp151.8.3.1 unbound-anchor-1.6.8-lp151.8.3.1 unbound-anchor-debuginfo-1.6.8-lp151.8.3.1 unbound-debuginfo-1.6.8-lp151.8.3.1 unbound-debugsource-1.6.8-lp151.8.3.1 unbound-devel-1.6.8-lp151.8.3.1 unbound-python-1.6.8-lp151.8.3.1 unbound-python-debuginfo-1.6.8-lp151.8.3.1 References: https://www.suse.com/security/cve/CVE-2019-18934.html https://www.suse.com/security/cve/CVE-2020-12662.html https://www.suse.com/security/cve/CVE-2020-12663.html https://bugzilla.suse.com/1157268 https://bugzilla.suse.com/1171889 -- . A significant announcement for Fedora addresses two vulnerabilities in dnf. Priority: critical effect on system security.. openSUSE Update, Unbound Security, Important Fix, Denial Of Service. . Severity: Important. LinuxSecurity.com Team
Jun 29, 2020
•Important
OpenSUSE
202
security advisoryupdateimportantopenSUSE: 2020:0913-1 Important: Unbound Update Fixes Amplification Issues
An update that fixes three vulnerabilities is now available.. openSUSE Security Update: Security update for unbound ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:0913-1 Rating: important References: #1157268 #1171889 Cross-References: CVE-2019-18934 CVE-2020-12662 CVE-2020-12663 Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for unbound fixes the following issues: - CVE-2020-12662: Fixed an issue where unbound could have been tricked into amplifying an incoming query into a large number of queries directed to a target (bsc#1171889). - CVE-2020-12663: Fixed an issue where malformed answers from upstream name servers could have been used to make unbound unresponsive (bsc#1171889). - CVE-2019-18934: Fixed a vulnerability in the IPSec module which could have allowed code execution after receiving a special crafted answer (bsc#1157268). This update was imported from the SUSE:SLE-15-SP1:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2020-913=1 Package List: - openSUSE Leap 15.2 (i586 x86_64): libunbound-devel-mini-1.6.8-lp152.9.3.1 libunbound-devel-mini-debuginfo-1.6.8-lp152.9.3.1 libunbound-devel-mini-debugsource-1.6.8-lp152.9.3.1 - openSUSE Leap 15.2 (noarch): unbound-munin-1.6.8-lp152.9.3.1 - openSUSE Leap 15.2 (x86_64): libunbound2-1.6.8-lp152.9.3.1 libunbound2-debuginfo-1.6.8-lp152.9.3.1 unbound-1.6.8-lp152.9.3.1 unbound-anchor-1.6.8-lp152.9.3.1 unbound-anchor-debuginfo-1.6.8-lp152.9.3.1 unbound-debuginfo-1.6.8-lp152.9.3.1 unbound-debugsource-1.6.8-lp152.9.3.1 unbound-devel-1.6.8-lp152.9.3.1 unbound-python-1.6.8-lp152.9.3.1 unbound-python-debuginfo-1.6.8-lp152.9.3.1 References: https://www.suse.com/security/cve/CVE-2019-18934.html https://www.suse.com/security/cve/CVE-2020-12662.html https://www.suse.com/security/cve/CVE-2020-12663.html https://bugzilla.suse.com/1157268 https://bugzilla.suse.com/1171889 -- . Patch release for unbound on openSUSE to address severe vulnerabilities and maintain overall system integrity.. openSUSE, unbound update, security patches, important fixes, software vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Jun 29, 2020
•Important
OpenSUSE
200
security advisorycriticalamplificationScientific Linux: SLSA-2020-2640-1 Critical: Unbound Loop and Amplification
unbound: amplification of an incoming query into a large number of queries directed to a target (CVE-2020-12662) * unbound: infinite loop via malformed DNS answers received from upstream servers (CVE-2020-12663) SL6 x86_64 unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.x86_64.rpm unbound-libs-1.4.20-29.el6_10.1.i686.rpm unbound-libs-1.4.2 [More...]. Synopsis: Important: unbound security update Advisory ID: SLSA-2020:2640-1 Issue Date: 2020-06-22 CVE Numbers: None -- Security Fix(es): * unbound: amplification of an incoming query into a large number of queries directed to a target (CVE-2020-12662) * unbound: infinite loop via malformed DNS answers received from upstream servers (CVE-2020-12663) -- SL6 x86_64 unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.x86_64.rpm unbound-libs-1.4.20-29.el6_10.1.i686.rpm unbound-libs-1.4.20-29.el6_10.1.x86_64.rpm unbound-1.4.20-29.el6_10.1.x86_64.rpm unbound-devel-1.4.20-29.el6_10.1.i686.rpm unbound-devel-1.4.20-29.el6_10.1.x86_64.rpm unbound-python-1.4.20-29.el6_10.1.i686.rpm unbound-python-1.4.20-29.el6_10.1.x86_64.rpm i386 unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-libs-1.4.20-29.el6_10.1.i686.rpm unbound-1.4.20-29.el6_10.1.i686.rpm unbound-devel-1.4.20-29.el6_10.1.i686.rpm unbound-python-1.4.20-29.el6_10.1.i686.rpm - Scientific Linux Development Team . Crucial security patch for Unbound addressing amplification vulnerabilities and endless loop concerns within Scientific Linux.. Unbound Security, Scientific Linux Advisory, DNS Amplification, Infinite Loop Threats. . Severity: Critical. LinuxSecurity.com Team
Jun 22, 2020
•Critical
Scientific Linux
98
security advisoryRed HatimportantRed Hat Enterprise Linux 6: RHSA-2020-2640-01 Important: Unbound Update
An update for unbound is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: unbound security update Advisory ID: RHSA-2020:2640-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:2640 Issue date: 2020-06-22 CVE Names: CVE-2020-12662 CVE-2020-12663 ==================================================================== 1. Summary: An update for unbound is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 3. Description: The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix(es): * unbound: amplification of an incoming query into a large number of queries directed to a target (CVE-2020-12662) * unbound: infinite loop via malformed DNS answers received from upstream servers (CVE-2020-12663) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and otherrelated information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1837597 - CVE-2020-12662 unbound: amplification of an incoming query into a large number of queries directed to a target 1837604 - CVE-2020-12663 unbound: infinite loop via malformed DNS answers received from upstream servers 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: unbound-1.4.20-29.el6_10.1.src.rpm i386: unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-libs-1.4.20-29.el6_10.1.i686.rpm x86_64: unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.x86_64.rpm unbound-libs-1.4.20-29.el6_10.1.i686.rpm unbound-libs-1.4.20-29.el6_10.1.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): i386: unbound-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-devel-1.4.20-29.el6_10.1.i686.rpm unbound-python-1.4.20-29.el6_10.1.i686.rpm x86_64: unbound-1.4.20-29.el6_10.1.x86_64.rpm unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.x86_64.rpm unbound-devel-1.4.20-29.el6_10.1.i686.rpm unbound-devel-1.4.20-29.el6_10.1.x86_64.rpm unbound-python-1.4.20-29.el6_10.1.i686.rpm unbound-python-1.4.20-29.el6_10.1.x86_64.rpm Red Hat Enterprise Linux Server (v.6): Source: unbound-1.4.20-29.el6_10.1.src.rpm i386: unbound-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-libs-1.4.20-29.el6_10.1.i686.rpm ppc64: unbound-1.4.20-29.el6_10.1.ppc64.rpm unbound-debuginfo-1.4.20-29.el6_10.1.ppc.rpm unbound-debuginfo-1.4.20-29.el6_10.1.ppc64.rpm unbound-libs-1.4.20-29.el6_10.1.ppc.rpm unbound-libs-1.4.20-29.el6_10.1.ppc64.rpm s390x: unbound-1.4.20-29.el6_10.1.s390x.rpm unbound-debuginfo-1.4.20-29.el6_10.1.s390.rpm unbound-debuginfo-1.4.20-29.el6_10.1.s390x.rpm unbound-libs-1.4.20-29.el6_10.1.s390.rpm unbound-libs-1.4.20-29.el6_10.1.s390x.rpm x86_64: unbound-1.4.20-29.el6_10.1.x86_64.rpm unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.x86_64.rpm unbound-libs-1.4.20-29.el6_10.1.i686.rpm unbound-libs-1.4.20-29.el6_10.1.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): i386: unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-devel-1.4.20-29.el6_10.1.i686.rpm unbound-python-1.4.20-29.el6_10.1.i686.rpm ppc64: unbound-debuginfo-1.4.20-29.el6_10.1.ppc.rpm unbound-debuginfo-1.4.20-29.el6_10.1.ppc64.rpm unbound-devel-1.4.20-29.el6_10.1.ppc.rpm unbound-devel-1.4.20-29.el6_10.1.ppc64.rpm unbound-python-1.4.20-29.el6_10.1.ppc.rpm unbound-python-1.4.20-29.el6_10.1.ppc64.rpm s390x: unbound-debuginfo-1.4.20-29.el6_10.1.s390.rpm unbound-debuginfo-1.4.20-29.el6_10.1.s390x.rpm unbound-devel-1.4.20-29.el6_10.1.s390.rpm unbound-devel-1.4.20-29.el6_10.1.s390x.rpm unbound-python-1.4.20-29.el6_10.1.s390.rpm unbound-python-1.4.20-29.el6_10.1.s390x.rpm x86_64: unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.x86_64.rpm unbound-devel-1.4.20-29.el6_10.1.i686.rpm unbound-devel-1.4.20-29.el6_10.1.x86_64.rpm unbound-python-1.4.20-29.el6_10.1.i686.rpm unbound-python-1.4.20-29.el6_10.1.x86_64.rpm Red Hat Enterprise Linux Workstation (v.6): Source: unbound-1.4.20-29.el6_10.1.src.rpm i386: unbound-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-libs-1.4.20-29.el6_10.1.i686.rpm x86_64: unbound-1.4.20-29.el6_10.1.x86_64.rpm unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.x86_64.rpm unbound-libs-1.4.20-29.el6_10.1.i686.rpm unbound-libs-1.4.20-29.el6_10.1.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): i386: unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-devel-1.4.20-29.el6_10.1.i686.rpm unbound-python-1.4.20-29.el6_10.1.i686.rpm x86_64: unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm unbound-debuginfo-1.4.20-29.el6_10.1.x86_64.rpm unbound-devel-1.4.20-29.el6_10.1.i686.rpm unbound-devel-1.4.20-29.el6_10.1.x86_64.rpm unbound-python-1.4.20-29.el6_10.1.i686.rpm unbound-python-1.4.20-29.el6_10.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-12662 https://access.redhat.com/security/cve/CVE-2020-12663 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXvBcKtzjgjWX9erEAQikig/8Dcd4G5vxJkcYct/IWRtrAGRQ2vlU5Kcs ihaXzNmSxiIFUpRZfGmDwzcDgwOgYgCZA5XH4kdtxO8N7LCQi5lpeVXhh08rKa8Y 5YoWEqi19xmqozJzCseB2VzzTXOeNSBw1ZYJAdZtG5YPxT+90+tL0b8tCUsU00WE fw076MmAvwEJ9vWcNRb7ouvNzH2FU8AKeLvhDlN3yVlQ9g6yiJxU8I3nTVy+XpG6 9pyVYA1+8c/ybeeKzKBrtVN6EhSQG9FvtWALhHmyHh+nxMQhm2pxNBVZ3CFhHWp4 fN38g8B8C+kxds2xEMaMvHveebDXATm9kxKvZs+O3fFJMZY3Zuzwsm9zXJMz7oc2 gSqeWs9XYftxjgZVwdllK+8x0oPpZ/+ifxjiHP/yGg5kcLvCKCYBk8Fwuv2+S6lF bK/WBQ9y4rhSaZCrCV2wmRFI+GfnJojQSK8WExmxFl2PHXVjtzOqEP7wTl9P3KT8 FojCFB5g75MBo8DGS847aeF+Hd9hOXP4h2Z4gXo5Hv4WbJnc3D8HaD8o2Mq4Af2c yfxq+mctJWP8JgImDxG2mr9a0wcApqive5uHzqKuoJfCuOJjlxC3IKMqK1uRE+LX vrRV8LB8SQXrxO2xQ1km72dELoH+A+LrjaCOZKEZOznAtRgeYwmwU+/egcpg3TPi kEtdKEBjuhI=i6vZ -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Jun 22, 2020
•Important
Red Hat
200
security advisoryDNS issueamplificationScientific Linux SL7: SLSA-2020-2414-1 Important Unbound Attack Fix
unbound: amplification of an incoming query into a large number of queries directed to a target (CVE-2020-12662) * unbound: infinite loop via malformed DNS answers received from upstream servers (CVE-2020-12663) SL7 x86_64 unbound-1.6.6-4.el7_8.x86_64.rpm unbound-debuginfo-1.6.6-4.el7_8.i686.rpm unbound-debuginfo-1.6.6-4.el7_8.x86_64.rpm unbound-libs-1.6.6-4.el7_8.i686.rpm [More...]. Synopsis: Important: unbound security update Advisory ID: SLSA-2020:2414-1 Issue Date: 2020-06-09 CVE Numbers: None -- Security Fix(es): * unbound: amplification of an incoming query into a large number of queries directed to a target (CVE-2020-12662) * unbound: infinite loop via malformed DNS answers received from upstream servers (CVE-2020-12663) -- SL7 x86_64 unbound-1.6.6-4.el7_8.x86_64.rpm unbound-debuginfo-1.6.6-4.el7_8.i686.rpm unbound-debuginfo-1.6.6-4.el7_8.x86_64.rpm unbound-libs-1.6.6-4.el7_8.i686.rpm unbound-libs-1.6.6-4.el7_8.x86_64.rpm unbound-devel-1.6.6-4.el7_8.i686.rpm unbound-devel-1.6.6-4.el7_8.x86_64.rpm unbound-python-1.6.6-4.el7_8.x86_64.rpm - Scientific Linux Development Team . Crucial unbounded security patch for Scientific Linux SL7 addressing amplification vulnerabilities and infinite loop problems.. unbound security, SL7 update, DNS vulnerability, security advisory. . Severity: Important. LinuxSecurity.com Team
Jun 09, 2020
•Important
Scientific Linux
98
security advisoryRed HatimportantRed Hat: RHSA-2020-2419-01 Important: Unbound DNS Security Threats
An update for unbound is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: unbound security update Advisory ID: RHSA-2020:2419-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:2419 Issue date: 2020-06-08 CVE Names: CVE-2020-12662 CVE-2020-12663 ==================================================================== 1. Summary: An update for unbound is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream EUS (v. 8.1) - aarch64, ppc64le, s390x, x86_64 3. Description: The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix(es): * unbound: amplification of an incoming query into a large number of queries directed to a target (CVE-2020-12662) * unbound: infinite loop via malformed DNS answers received from upstream servers (CVE-2020-12663) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1837597 - CVE-2020-12662 unbound:amplification of an incoming query into a large number of queries directed to a target 1837604 - CVE-2020-12663 unbound: infinite loop via malformed DNS answers received from upstream servers 6. Package List: Red Hat Enterprise Linux AppStream EUS (v. 8.1): Source: unbound-1.7.3-9.el8_1.src.rpm aarch64: python3-unbound-1.7.3-9.el8_1.aarch64.rpm python3-unbound-debuginfo-1.7.3-9.el8_1.aarch64.rpm unbound-1.7.3-9.el8_1.aarch64.rpm unbound-debuginfo-1.7.3-9.el8_1.aarch64.rpm unbound-debugsource-1.7.3-9.el8_1.aarch64.rpm unbound-devel-1.7.3-9.el8_1.aarch64.rpm unbound-libs-1.7.3-9.el8_1.aarch64.rpm unbound-libs-debuginfo-1.7.3-9.el8_1.aarch64.rpm ppc64le: python3-unbound-1.7.3-9.el8_1.ppc64le.rpm python3-unbound-debuginfo-1.7.3-9.el8_1.ppc64le.rpm unbound-1.7.3-9.el8_1.ppc64le.rpm unbound-debuginfo-1.7.3-9.el8_1.ppc64le.rpm unbound-debugsource-1.7.3-9.el8_1.ppc64le.rpm unbound-devel-1.7.3-9.el8_1.ppc64le.rpm unbound-libs-1.7.3-9.el8_1.ppc64le.rpm unbound-libs-debuginfo-1.7.3-9.el8_1.ppc64le.rpm s390x: python3-unbound-1.7.3-9.el8_1.s390x.rpm python3-unbound-debuginfo-1.7.3-9.el8_1.s390x.rpm unbound-1.7.3-9.el8_1.s390x.rpm unbound-debuginfo-1.7.3-9.el8_1.s390x.rpm unbound-debugsource-1.7.3-9.el8_1.s390x.rpm unbound-devel-1.7.3-9.el8_1.s390x.rpm unbound-libs-1.7.3-9.el8_1.s390x.rpm unbound-libs-debuginfo-1.7.3-9.el8_1.s390x.rpm x86_64: python3-unbound-1.7.3-9.el8_1.x86_64.rpm python3-unbound-debuginfo-1.7.3-9.el8_1.i686.rpm python3-unbound-debuginfo-1.7.3-9.el8_1.x86_64.rpm unbound-1.7.3-9.el8_1.x86_64.rpm unbound-debuginfo-1.7.3-9.el8_1.i686.rpm unbound-debuginfo-1.7.3-9.el8_1.x86_64.rpm unbound-debugsource-1.7.3-9.el8_1.i686.rpm unbound-debugsource-1.7.3-9.el8_1.x86_64.rpm unbound-devel-1.7.3-9.el8_1.i686.rpm unbound-devel-1.7.3-9.el8_1.x86_64.rpm unbound-libs-1.7.3-9.el8_1.i686.rpm unbound-libs-1.7.3-9.el8_1.x86_64.rpm unbound-libs-debuginfo-1.7.3-9.el8_1.i686.rpm unbound-libs-debuginfo-1.7.3-9.el8_1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify thesignature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-12662 https://access.redhat.com/security/cve/CVE-2020-12663 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXt4R/9zjgjWX9erEAQjHFg/+KV+8wOKlADE05U8lSffqpK2gjj7LqM7X 0XO3ABTvS1ISwrsOZrqyVRzpStJdpwAcDCuzVxWthCM7G2FGMo/6YMzYEdOK1DL3 yeLOhzih3WJcnEPzAYRjfN1NFvY52zD30T2llnO3Oym07h5JYoiS7VBe13asbIPN ypcf9lF+QDP1FheOfLmORJCSWHTT2skwpRnLFVrw5Dvi8IGyDl17dUkNX72M6/4g ImXBgKmin6cFVfQDSX0AwxFctB25tutRfSeYXaKoROTFMb4d4DqzuEuwQttoCaqg HCJ4821CI9pQcQe8ECAcrs2mjtwOqh1T/XYtyuoZXiPxksmTa1FzWBhHYtlRqdhG M+NvZ9szKqOc82ZzeOVA8edccpOTw6bG7XjjIplz/nwP2TRfKpCYyQSt/Us9f5/K gMJTX773Em6YHKqaSZPRbLUNEvSDOflpYd5tyKzjZUaAeNuZQm+e2bhxwQ3E2K5/ yU4z6ti8qBSlXSFg2FWeQQEw3rgRR/9pBcqgfOQLLkumaUq9ErFn+ZtfzxBux3UI p1gDz0vY6geUUzCX5UPUrjeKh9gHIP2S7QmuMZ2iputjYHuOKz9A+3wklketPbj6 k9UsHrz613DXJBvTqymqGtPpNt/dy/OUuzG6DnGT3eZQ5EA5kejyfQHUbArphw3z TZV7LeSzBbo=g9lH -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Jun 08, 2020
•Important
Red Hat
98
security advisoryred hatimportantImportant Security Issues Addressed in Red Hat Enterprise Linux 7 Unbound
An update for unbound is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: unbound security update Advisory ID: RHSA-2020:2414-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:2414 Issue date: 2020-06-08 CVE Names: CVE-2020-12662 CVE-2020-12663 ==================================================================== 1. Summary: An update for unbound is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix(es): * unbound: amplification of an incoming query into a large number of queries directed to a target (CVE-2020-12662) * unbound: infinite loop via malformed DNS answers received from upstream servers (CVE-2020-12663) For moredetails about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1837597 - CVE-2020-12662 unbound: amplification of an incoming query into a large number of queries directed to a target 1837604 - CVE-2020-12663 unbound: infinite loop via malformed DNS answers received from upstream servers 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: unbound-1.6.6-4.el7_8.src.rpm x86_64: unbound-1.6.6-4.el7_8.x86_64.rpm unbound-debuginfo-1.6.6-4.el7_8.i686.rpm unbound-debuginfo-1.6.6-4.el7_8.x86_64.rpm unbound-libs-1.6.6-4.el7_8.i686.rpm unbound-libs-1.6.6-4.el7_8.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: unbound-debuginfo-1.6.6-4.el7_8.i686.rpm unbound-debuginfo-1.6.6-4.el7_8.x86_64.rpm unbound-devel-1.6.6-4.el7_8.i686.rpm unbound-devel-1.6.6-4.el7_8.x86_64.rpm unbound-python-1.6.6-4.el7_8.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v. 7): Source: unbound-1.6.6-4.el7_8.src.rpm x86_64: unbound-debuginfo-1.6.6-4.el7_8.i686.rpm unbound-debuginfo-1.6.6-4.el7_8.x86_64.rpm unbound-libs-1.6.6-4.el7_8.i686.rpm unbound-libs-1.6.6-4.el7_8.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v. 7): x86_64: unbound-1.6.6-4.el7_8.x86_64.rpm unbound-debuginfo-1.6.6-4.el7_8.i686.rpm unbound-debuginfo-1.6.6-4.el7_8.x86_64.rpm unbound-devel-1.6.6-4.el7_8.i686.rpm unbound-devel-1.6.6-4.el7_8.x86_64.rpm unbound-python-1.6.6-4.el7_8.x86_64.rpm Red Hat Enterprise Linux Server (v.7): Source: unbound-1.6.6-4.el7_8.src.rpm ppc64: unbound-1.6.6-4.el7_8.ppc64.rpm unbound-debuginfo-1.6.6-4.el7_8.ppc.rpm unbound-debuginfo-1.6.6-4.el7_8.ppc64.rpm unbound-libs-1.6.6-4.el7_8.ppc.rpm unbound-libs-1.6.6-4.el7_8.ppc64.rpm ppc64le: unbound-1.6.6-4.el7_8.ppc64le.rpm unbound-debuginfo-1.6.6-4.el7_8.ppc64le.rpm unbound-libs-1.6.6-4.el7_8.ppc64le.rpm s390x: unbound-1.6.6-4.el7_8.s390x.rpm unbound-debuginfo-1.6.6-4.el7_8.s390.rpm unbound-debuginfo-1.6.6-4.el7_8.s390x.rpm unbound-libs-1.6.6-4.el7_8.s390.rpm unbound-libs-1.6.6-4.el7_8.s390x.rpm x86_64: unbound-1.6.6-4.el7_8.x86_64.rpm unbound-debuginfo-1.6.6-4.el7_8.i686.rpm unbound-debuginfo-1.6.6-4.el7_8.x86_64.rpm unbound-libs-1.6.6-4.el7_8.i686.rpm unbound-libs-1.6.6-4.el7_8.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64: unbound-debuginfo-1.6.6-4.el7_8.ppc.rpm unbound-debuginfo-1.6.6-4.el7_8.ppc64.rpm unbound-devel-1.6.6-4.el7_8.ppc.rpm unbound-devel-1.6.6-4.el7_8.ppc64.rpm unbound-python-1.6.6-4.el7_8.ppc64.rpm ppc64le: unbound-debuginfo-1.6.6-4.el7_8.ppc64le.rpm unbound-devel-1.6.6-4.el7_8.ppc64le.rpm unbound-python-1.6.6-4.el7_8.ppc64le.rpm s390x: unbound-debuginfo-1.6.6-4.el7_8.s390.rpm unbound-debuginfo-1.6.6-4.el7_8.s390x.rpm unbound-devel-1.6.6-4.el7_8.s390.rpm unbound-devel-1.6.6-4.el7_8.s390x.rpm unbound-python-1.6.6-4.el7_8.s390x.rpm x86_64: unbound-debuginfo-1.6.6-4.el7_8.i686.rpm unbound-debuginfo-1.6.6-4.el7_8.x86_64.rpm unbound-devel-1.6.6-4.el7_8.i686.rpm unbound-devel-1.6.6-4.el7_8.x86_64.rpm unbound-python-1.6.6-4.el7_8.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: unbound-1.6.6-4.el7_8.src.rpm x86_64: unbound-1.6.6-4.el7_8.x86_64.rpm unbound-debuginfo-1.6.6-4.el7_8.i686.rpm unbound-debuginfo-1.6.6-4.el7_8.x86_64.rpm unbound-libs-1.6.6-4.el7_8.i686.rpm unbound-libs-1.6.6-4.el7_8.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v.7): x86_64: unbound-debuginfo-1.6.6-4.el7_8.i686.rpm unbound-debuginfo-1.6.6-4.el7_8.x86_64.rpm unbound-devel-1.6.6-4.el7_8.i686.rpm unbound-devel-1.6.6-4.el7_8.x86_64.rpm unbound-python-1.6.6-4.el7_8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-12662 https://access.redhat.com/security/cve/CVE-2020-12663 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXt3139zjgjWX9erEAQiAxA//Sl2CMryT+nEAXdFVWagb5nQ3q71oQy/8 FD4rLJRShX1F6dtiB7IA0eHNfTVi4Xt0oJuC2YfIXl8yVV4l4HSQPyfrHoKC71xq 1x/BDjNeEjprB2wthA/tHr2Uz2E6+p74VwT+9nHG1juWE/j1/JFQCvQrzlV+PP+3 7jF7oyOXNxEbb3IJH3MPgItgVDtk2M5t9ZkW0lfWJ+jwivsgW20XF/Ug3rJXWe98 RYBtGoXhFO8hUkZeU52pCEOmlzIxikJ/7XqlG5hyytUqZhQrG+jZSxYBFpFRIBOW 6MS2t8qky4ZiR9gm8A0ptrkkjUQ7/76kPS5M/IKxmeJAgxGDV3R4WnOiNq1bMSx6 3Vprw4/xaM65vkgpqR5zLOujnN/R1VKnAJ1b8wjP90cyASsfevFrB1zS4i1NRSPa V90zEQjgHPW69fidGrPABB/9YaoJ+TOLREfhQ32Ir+AfN2L5lLDhZIXurJmzpDKG c27nFOXsy4r6TrkX7a27CfKhUNnr2RIU17owPKV3mgiJsMR9CrYtjRF+E/htiITK bhQnvDS3GvNi6SBurj3CFp0WEHacZGvBoLYz3BCKMVZEJ/bS38+FT69qzXvF+Jmh EizivP2WPyMd/tYaw6zpz5sS46uTpdBawBv9bE+wE9q2R2WkEuqniCn8fFmekgYt 3JPkbBIHBE8=fKlO -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Jun 08, 2020
•Important
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!