Project

General

Profile

Actions

Todo #15483

closed

Update Unbound to 1.22.0

Added by Glenn Hall 8 months ago. Updated about 2 months ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
DNS Resolver
Target version:
Start date:
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
24.11
Release Notes:
Default

Description

Update Unbound to version 1.20.0, as this newest version contains a fix for the DNSBomb vulnerability CVE-2024-33655.

Actions #1

Updated by Jim Pingle 8 months ago

  • Priority changed from Normal-package to Normal
  • Target version set to 2.8.0
  • Plus Target Version set to 24.07

If you read the details that isn't really a vulnerability in Unbound and they only added/changed some default values to make it less of a tempting middleman for attackers. We're already working on updating it, but it's not as critical as if it were a flaw in Unbound itself.

Actions #2

Updated by Jim Pingle 7 months ago

  • Plus Target Version changed from 24.07 to 24.08
Actions #3

Updated by Jim Pingle 2 months ago

  • Subject changed from Update Unbound to 1.20.0 to Update Unbound to 1.20.1
Actions #4

Updated by Jim Pingle 2 months ago

  • Subject changed from Update Unbound to 1.20.1 to Update Unbound to 1.21.1
  • Status changed from New to Feedback
  • % Done changed from 0 to 100

Latest snapshots contain unbound-1.21.1

Actions #5

Updated by Jim Pingle 2 months ago

  • Plus Target Version changed from 24.08 to 24.11
Actions #6

Updated by Georgiy Tyutyunnik 2 months ago

  • Status changed from Feedback to Resolved

Latest snapshots contain unbound-1.21.1 - confirmed

Actions #7

Updated by Marcos M about 2 months ago

  • Subject changed from Update Unbound to 1.21.1 to Update Unbound to 1.22.0

We're now on 1.22.0.

Actions

Also available in: Atom PDF