projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2851543) | patch
unbound: update to 1.6.8 for CVE-2017-15105 5478/head
authorEric Luehrsen <ericluehrsen@hotmail.com>
Sat, 20 Jan 2018 01:06:59 +0000 (20:06 -0500)
committerEric Luehrsen <ericluehrsen@hotmail.com>
Sat, 20 Jan 2018 01:11:49 +0000 (20:11 -0500)
commitd12d2e31d34b71c0db1033b63c5bdc5202f9c2ab
tree6ba1fd7d7c1d8c44e055cc01b7e7ff5b840fede0tree | snapshot
parent2851543d032884500ed0ce90125bf80127ef4c88commit | diff
unbound: update to 1.6.8 for CVE-2017-15105

A vulnerability was discovered in the processing of wildcard synthesized
NSEC records. While synthesis of NSEC records is allowed by RFC4592,
these synthesized owner names should not be used in the NSEC processing.
This does, however, happen in Unbound 1.6.7 and earlier versions.
(see https://unbound.net/downloads/CVE-2017-15105.txt)

Signed-off-by: Eric Luehrsen <ericluehrsen@hotmail.com>
net/unbound/Makefile diff | blob | history
net/unbound/patches/001-conf.patch diff | blob | history
Mirror of packages feed