Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:0837

Опубликовано: 13 фев. 2025
Источник: rocky
Оценка: Important

Описание

Important: unbound security update

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.

Security Fix(es):

  • unbound: unrestricted reconfiguration enabled to anyone that may lead to local privilege escalation (CVE-2024-1488)

  • unbound: Unbounded name compression could lead to Denial of Service (CVE-2024-8508)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
python3-unboundx86_645.8.el8_10python3-unbound-1.16.2-5.8.el8_10.x86_64.rpm
unboundx86_645.8.el8_10unbound-1.16.2-5.8.el8_10.x86_64.rpm
unbound-develi6865.8.el8_10unbound-devel-1.16.2-5.8.el8_10.i686.rpm
unbound-develx86_645.8.el8_10unbound-devel-1.16.2-5.8.el8_10.x86_64.rpm
unbound-libsi6865.8.el8_10unbound-libs-1.16.2-5.8.el8_10.i686.rpm
unbound-libsx86_645.8.el8_10unbound-libs-1.16.2-5.8.el8_10.x86_64.rpm

Показывать по

Связанные CVE

CVE-2024-1488
CVE-2024-8508

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2025-0837

oracle-oval
9 месяцев назад

ELSA-2025-0837: unbound security update (IMPORTANT)

ubuntu логотип

CVE-2024-1488

CVSS3: 8
ubuntu
больше 1 года назад

A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. If a process can connect over localhost to port 8953, it can alter the configuration of unbound.service. This flaw allows an unprivileged attacker to manipulate a running instance, potentially altering forwarders, allowing them to track all queries forwarded by the local resolver, and, in some cases, disrupting resolving altogether.

redhat логотип

CVE-2024-1488

CVSS3: 8
redhat
больше 1 года назад

A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. If a process can connect over localhost to port 8953, it can alter the configuration of unbound.service. This flaw allows an unprivileged attacker to manipulate a running instance, potentially altering forwarders, allowing them to track all queries forwarded by the local resolver, and, in some cases, disrupting resolving altogether.

nvd логотип

CVE-2024-1488

CVSS3: 8
nvd
больше 1 года назад

A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. If a process can connect over localhost to port 8953, it can alter the configuration of unbound.service. This flaw allows an unprivileged attacker to manipulate a running instance, potentially altering forwarders, allowing them to track all queries forwarded by the local resolver, and, in some cases, disrupting resolving altogether.

debian логотип

CVE-2024-1488

CVSS3: 8
debian
больше 1 года назад

A vulnerability was found in Unbound due to incorrect default permissi ...