Public bug reported:
unbound (1.19.1-1) unstable; urgency=medium
* new upstream bugfix release (1.19.1):
o Fix CVE-2023-50387, DNSSEC verification complexity can be exploited
to exhaust CPU resources and stall DNS resolvers
o Fix CVE-2023-50868, NSEC3 closest encloser proof can exhaust CPU
* new upstream release (1.19.0)
* d/control: Build-Depends: pkg-config => pkgconf
* d/unbound.lintian-overrides: remove
package-supports-alternative-init-but-no-init.d-script
* d/unbound.lintian-overrides: adjust for /lib=>/usr/lib move
-- Michael Tokarev <m...@tls.msk.ru> Tue, 13 Feb 2024 22:40:40 +0300
** Affects: unbound (Ubuntu)
Importance: Undecided
Assignee: Andreas Hasenack (ahasenack)
Status: In Progress
** Tags: needs-merge
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2055042
Title:
Merge unbound 1.19.1-1 from debian
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/unbound/+bug/2055042/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
