Scientific Linux alert SLSA-2020:2640-1 (unbound)


From:
               Farhan Ahmed <fahmed@fnal.gov> 
To:
               scientific-linux-errata@listserv.fnal.gov 
Subject:
               Security ERRATA Important: unbound on SL6.x i386/x86_64 
Date:
               Mon, 22 Jun 2020 15:01:40 -0000
Message-ID:
               <20200622150140.9274.31384@slpackages.fnal.gov>
Synopsis:          Important: unbound security update
Advisory ID:       SLSA-2020:2640-1
Issue Date:        2020-06-22
CVE Numbers:       None
--

Security Fix(es):

* unbound: amplification of an incoming query into a large number of
queries directed to a target (CVE-2020-12662)

* unbound: infinite loop via malformed DNS answers received from upstream
servers (CVE-2020-12663)
--

SL6
  x86_64
    unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm
    unbound-debuginfo-1.4.20-29.el6_10.1.x86_64.rpm
    unbound-libs-1.4.20-29.el6_10.1.i686.rpm
    unbound-libs-1.4.20-29.el6_10.1.x86_64.rpm
    unbound-1.4.20-29.el6_10.1.x86_64.rpm
    unbound-devel-1.4.20-29.el6_10.1.i686.rpm
    unbound-devel-1.4.20-29.el6_10.1.x86_64.rpm
    unbound-python-1.4.20-29.el6_10.1.i686.rpm
    unbound-python-1.4.20-29.el6_10.1.x86_64.rpm
  i386
    unbound-debuginfo-1.4.20-29.el6_10.1.i686.rpm
    unbound-libs-1.4.20-29.el6_10.1.i686.rpm
    unbound-1.4.20-29.el6_10.1.i686.rpm
    unbound-devel-1.4.20-29.el6_10.1.i686.rpm
    unbound-python-1.4.20-29.el6_10.1.i686.rpm

- Scientific Linux Development Team

From:		Farhan Ahmed <fahmed@fnal.gov>
To:		scientific-linux-errata@listserv.fnal.gov
Subject:		Security ERRATA Important: unbound on SL6.x i386/x86_64
Date:		Mon, 22 Jun 2020 15:01:40 -0000
Message-ID:		<20200622150140.9274.31384@slpackages.fnal.gov>