Oval Definition:oval:com.redhat.rhsa:def:20227622
Revision Date:2022-11-08Version:637
Title:RHSA-2022:7622: unbound security, bug fix, and enhancement update (Moderate)
Description:The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.

  • The following packages have been upgraded to a later upstream version: unbound (1.16.2). (BZ#2027735)

    Security Fix(es):

  • unbound: the novel ghost domain where malicious users to trigger continued resolvability of malicious domain names (CVE-2022-30698)

  • unbound: novel ghost domain attack where malicious users to trigger continued resolvability of malicious domain names (CVE-2022-30699)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.7 Release Notes linked from the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2022-30698
    CVE-2022-30699
    RHSA-2022:7622
    Platform(s):Red Hat Enterprise Linux 8
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 8 is installed
  • OR Red Hat CoreOS 4 is installed
  • AND
  • python3-unbound is earlier than 0:1.16.2-2.el8
  • AND python3-unbound is signed with Red Hat redhatrelease2 key
  • unbound is earlier than 0:1.16.2-2.el8
  • AND unbound is signed with Red Hat redhatrelease2 key
  • unbound-devel is earlier than 0:1.16.2-2.el8
  • AND unbound-devel is signed with Red Hat redhatrelease2 key
  • unbound-libs is earlier than 0:1.16.2-2.el8
  • AND unbound-libs is signed with Red Hat redhatrelease2 key
    • BACK