Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-28935 (GCVE-0-2020-28935)
Vulnerability from cvelistv5
Published
2020-12-07 21:46
Modified
2024-09-16 23:27
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-59 - Improper Link Resolution Before File Access ('Link Following')
Summary
NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ► | NLnet Labs | Unbound |
Version: <= 1.12.0 |
||||||
|
|||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T16:48:00.719Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt"
},
{
"name": "GLSA-202101-38",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202101-38"
},
{
"name": "[debian-lts-announce] 20210212 [SECURITY] [DLA 2556-1] unbound1.9 security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00017.html"
},
{
"name": "[debian-lts-announce] 20230329 [SECURITY] [DLA 3371-1] unbound security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Unbound",
"vendor": "NLnet Labs",
"versions": [
{
"status": "affected",
"version": "\u003c= 1.12.0"
}
]
},
{
"product": "NSD",
"vendor": "NLnet Labs",
"versions": [
{
"status": "affected",
"version": "\u003c= 4.3.3"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "We would like to thank Mason Loring Bliss for bringing the issue to our attention."
}
],
"datePublic": "2020-12-01T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-59",
"description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-03-29T00:00:00",
"orgId": "206fc3a0-e175-490b-9eaa-a5738056c9f6",
"shortName": "NLnet Labs"
},
"references": [
{
"url": "https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt"
},
{
"url": "https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt"
},
{
"name": "GLSA-202101-38",
"tags": [
"vendor-advisory"
],
"url": "https://security.gentoo.org/glsa/202101-38"
},
{
"name": "[debian-lts-announce] 20210212 [SECURITY] [DLA 2556-1] unbound1.9 security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00017.html"
},
{
"name": "[debian-lts-announce] 20230329 [SECURITY] [DLA 3371-1] unbound security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html"
}
],
"title": "Local symlink attack in Unbound and NSD"
}
},
"cveMetadata": {
"assignerOrgId": "206fc3a0-e175-490b-9eaa-a5738056c9f6",
"assignerShortName": "NLnet Labs",
"cveId": "CVE-2020-28935",
"datePublished": "2020-12-07T21:46:47.878342Z",
"dateReserved": "2020-11-18T00:00:00",
"dateUpdated": "2024-09-16T23:27:01.127Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2020-28935\",\"sourceIdentifier\":\"sep@nlnetlabs.nl\",\"published\":\"2020-12-07T22:15:20.853\",\"lastModified\":\"2024-11-21T05:23:19.620\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.\"},{\"lang\":\"es\",\"value\":\"NLnet Labs Unbound, hasta la versi\u00f3n 1.12.0 incluy\u00e9ndola, y NLnet Labs NSD, hasta la versi\u00f3n 4.3.3 incluy\u00e9ndola, contienen una vulnerabilidad local que permitir\u00eda un ataque de tipo symlink local. Al escribir el archivo PID, Unbound y NSD crean el archivo si no est\u00e1 all\u00ed, o abren un archivo existente para escribir. En caso de que el archivo ya existiera, seguir\u00edan enlaces simb\u00f3licos si el archivo fuera un enlace simb\u00f3lico en lugar de un archivo normal. Luego, se llevar\u00eda a cabo una copia adicional del archivo despu\u00e9s de que se escribi\u00f3, lo que har\u00eda que el usuario Unbound/NSD se ejecute como el nuevo propietario del archivo. Si un atacante tiene acceso local al usuario con el que se ejecuta Unbound/NSD, podr\u00eda crear un enlace simb\u00f3lico en lugar del archivo PID que apunta hacia un archivo que le gustar\u00eda borrar. Si luego Unbound/NSD es eliminado y el archivo PID no se borra, al reiniciar con privilegios root, Unbound/NSD reescribir\u00e1 cualquier archivo apuntado por el enlace simb\u00f3lico. Esta es una vulnerabilidad local que podr\u00eda crear una Denegaci\u00f3n de Servicio del sistema en el que se ejecuta Unbound/NSD. Requiere que un atacante tenga acceso al usuario de permiso limitado que se ejecuta como Unbound/NSD y apunta por medio del enlace simb\u00f3lico a un archivo cr\u00edtico en el sistema\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"sep@nlnetlabs.nl\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-59\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-59\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:name_server_daemon:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.3.4\",\"matchCriteriaId\":\"2999AD3A-4E86-4E7F-94DC-7972AF046056\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:unbound:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.13.0\",\"matchCriteriaId\":\"B5033957-63F8-4F49-A451-96BEF9644520\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}],\"references\":[{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/02/msg00017.html\",\"source\":\"sep@nlnetlabs.nl\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html\",\"source\":\"sep@nlnetlabs.nl\"},{\"url\":\"https://security.gentoo.org/glsa/202101-38\",\"source\":\"sep@nlnetlabs.nl\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt\",\"source\":\"sep@nlnetlabs.nl\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt\",\"source\":\"sep@nlnetlabs.nl\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/02/msg00017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202101-38\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
opensuse-su-2024:11100-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
nsd-4.3.7-1.2 on GA media
Notes
Title of the patch
nsd-4.3.7-1.2 on GA media
Description of the patch
These are all security issues fixed in the nsd-4.3.7-1.2 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11100
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "nsd-4.3.7-1.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the nsd-4.3.7-1.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11100",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11100-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2979 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2979/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-6173 page",
"url": "https://www.suse.com/security/cve/CVE-2016-6173/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-13207 page",
"url": "https://www.suse.com/security/cve/CVE-2019-13207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-28935 page",
"url": "https://www.suse.com/security/cve/CVE-2020-28935/"
}
],
"title": "nsd-4.3.7-1.2 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11100-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nsd-4.3.7-1.2.aarch64",
"product": {
"name": "nsd-4.3.7-1.2.aarch64",
"product_id": "nsd-4.3.7-1.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nsd-4.3.7-1.2.ppc64le",
"product": {
"name": "nsd-4.3.7-1.2.ppc64le",
"product_id": "nsd-4.3.7-1.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nsd-4.3.7-1.2.s390x",
"product": {
"name": "nsd-4.3.7-1.2.s390x",
"product_id": "nsd-4.3.7-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nsd-4.3.7-1.2.x86_64",
"product": {
"name": "nsd-4.3.7-1.2.x86_64",
"product_id": "nsd-4.3.7-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.7-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64"
},
"product_reference": "nsd-4.3.7-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.7-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le"
},
"product_reference": "nsd-4.3.7-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.7-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x"
},
"product_reference": "nsd-4.3.7-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.7-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
},
"product_reference": "nsd-4.3.7-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2012-2979",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2979"
}
],
"notes": [
{
"category": "general",
"text": "FreeBSD NSD before 3.2.13 allows remote attackers to crash a NSD child server process (SIGSEGV) and cause a denial of service in the NSD server.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2979",
"url": "https://www.suse.com/security/cve/CVE-2012-2979"
},
{
"category": "external",
"summary": "SUSE Bug 774600 for CVE-2012-2979",
"url": "https://bugzilla.suse.com/774600"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-2979"
},
{
"cve": "CVE-2016-6173",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-6173"
}
],
"notes": [
{
"category": "general",
"text": "NSD before 4.1.11 allows remote DNS master servers to cause a denial of service (/tmp disk consumption and slave server crash) via a zone transfer with unlimited data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-6173",
"url": "https://www.suse.com/security/cve/CVE-2016-6173"
},
{
"category": "external",
"summary": "SUSE Bug 987873 for CVE-2016-6173",
"url": "https://bugzilla.suse.com/987873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-6173"
},
{
"cve": "CVE-2019-13207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-13207"
}
],
"notes": [
{
"category": "general",
"text": "nsd-checkzone in NLnet Labs NSD 4.2.0 has a Stack-based Buffer Overflow in the dname_concatenate() function in dname.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-13207",
"url": "https://www.suse.com/security/cve/CVE-2019-13207"
},
{
"category": "external",
"summary": "SUSE Bug 1182952 for CVE-2019-13207",
"url": "https://bugzilla.suse.com/1182952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-13207"
},
{
"cve": "CVE-2020-28935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-28935"
}
],
"notes": [
{
"category": "general",
"text": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-28935",
"url": "https://www.suse.com/security/cve/CVE-2020-28935"
},
{
"category": "external",
"summary": "SUSE Bug 1173619 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1173619"
},
{
"category": "external",
"summary": "SUSE Bug 1179191 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1179191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:nsd-4.3.7-1.2.aarch64",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.ppc64le",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.s390x",
"openSUSE Tumbleweed:nsd-4.3.7-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-28935"
}
]
}
opensuse-su-2025:15069-1
Vulnerability from csaf_opensuse
Published
2025-05-08 00:00
Modified
2025-05-08 00:00
Summary
sslh-2.2.3-1.1 on GA media
Notes
Title of the patch
sslh-2.2.3-1.1 on GA media
Description of the patch
These are all security issues fixed in the sslh-2.2.3-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2025-15069
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "sslh-2.2.3-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the sslh-2.2.3-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15069",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15069-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-28935 page",
"url": "https://www.suse.com/security/cve/CVE-2020-28935/"
}
],
"title": "sslh-2.2.3-1.1 on GA media",
"tracking": {
"current_release_date": "2025-05-08T00:00:00Z",
"generator": {
"date": "2025-05-08T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15069-1",
"initial_release_date": "2025-05-08T00:00:00Z",
"revision_history": [
{
"date": "2025-05-08T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "sslh-2.2.3-1.1.aarch64",
"product": {
"name": "sslh-2.2.3-1.1.aarch64",
"product_id": "sslh-2.2.3-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "sslh-2.2.3-1.1.ppc64le",
"product": {
"name": "sslh-2.2.3-1.1.ppc64le",
"product_id": "sslh-2.2.3-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "sslh-2.2.3-1.1.s390x",
"product": {
"name": "sslh-2.2.3-1.1.s390x",
"product_id": "sslh-2.2.3-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "sslh-2.2.3-1.1.x86_64",
"product": {
"name": "sslh-2.2.3-1.1.x86_64",
"product_id": "sslh-2.2.3-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "sslh-2.2.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sslh-2.2.3-1.1.aarch64"
},
"product_reference": "sslh-2.2.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sslh-2.2.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sslh-2.2.3-1.1.ppc64le"
},
"product_reference": "sslh-2.2.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sslh-2.2.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sslh-2.2.3-1.1.s390x"
},
"product_reference": "sslh-2.2.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sslh-2.2.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sslh-2.2.3-1.1.x86_64"
},
"product_reference": "sslh-2.2.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-28935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-28935"
}
],
"notes": [
{
"category": "general",
"text": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:sslh-2.2.3-1.1.aarch64",
"openSUSE Tumbleweed:sslh-2.2.3-1.1.ppc64le",
"openSUSE Tumbleweed:sslh-2.2.3-1.1.s390x",
"openSUSE Tumbleweed:sslh-2.2.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-28935",
"url": "https://www.suse.com/security/cve/CVE-2020-28935"
},
{
"category": "external",
"summary": "SUSE Bug 1173619 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1173619"
},
{
"category": "external",
"summary": "SUSE Bug 1179191 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1179191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:sslh-2.2.3-1.1.aarch64",
"openSUSE Tumbleweed:sslh-2.2.3-1.1.ppc64le",
"openSUSE Tumbleweed:sslh-2.2.3-1.1.s390x",
"openSUSE Tumbleweed:sslh-2.2.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:sslh-2.2.3-1.1.aarch64",
"openSUSE Tumbleweed:sslh-2.2.3-1.1.ppc64le",
"openSUSE Tumbleweed:sslh-2.2.3-1.1.s390x",
"openSUSE Tumbleweed:sslh-2.2.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-05-08T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-28935"
}
]
}
opensuse-su-2020:2222-1
Vulnerability from csaf_opensuse
Published
2020-12-10 11:23
Modified
2020-12-10 11:23
Summary
Security update for nsd
Notes
Title of the patch
Security update for nsd
Description of the patch
This update for nsd fixes the following issues:
nsd was updated to the new upstream release 4.3.4
FEATURES:
- Merge PR #141: ZONEMD RR type.
BUG FIXES:
- Fix that symlink does not interfere with chown of pidfile
(boo#1179191, CVE-2020-28935)
- Fix #128: Fix that the invalid port number is logged for sendmmsg failed: Invalid argument.
- Fix #133: fix 0-init of local ( stack ) buffer.
- Fix #134: IPV4_MINIMAL_RESPONSE_SIZE vs EDNS_MAX_MESSAGE_LEN.
- Fix to add missing closest encloser NSEC3 for wildcard nodata type DS answer.
- Fix #138: NSD returns non-EDNS answer when QUESTION is empty.
- Fix #142: NODATA answers missin SOA in authority section after CNAME chain.
New upstream release 4.3.3:
FEATURES:
- Follow DNS flag day 2020 advice and set default EDNS message size to 1232.
- Merged PR #113 with fixes. Instead of listing an IP-address to
listen on, an interface name can be specified in nsd.conf, with
ip-address: eth0. The IP-addresses for that interface are then used.
- New upstream release 4.3.2
FEATURES:
- Fix #96: log-only-syslog: yes sets to only use syslog, fixes
that the default configuration and systemd results in duplicate
log messages.
- Fix #107: nsd -v shows configure line, openssl version and libevent
version.
- Fix #103 with #110: min-expire-time option. To provide a lower
bound for expire period. Expressed in number of seconds or
refresh+retry+1.
BUG FIXES:
- Fix to omit the listen-on lines from log at startup, unless verbose.
- Fix #97: EDNS unknown version: query not in response.
- Fix #99: Fix copying of socket properties with reuseport enabled.
- Document default value for tcp-timeout.
- Merge PR#102 from and0x000: add missing default in documentation for drop-updates.
- Fix unlink of pidfile warning if not possible due to permissions,
nsd can display the message at high verbosity levels.
- Removed contrib/nsd.service, example is too complicated and not useful.
- Merge #108 from Nomis: Make the max-retry-time description clearer.
- Retry when udp send buffer is full to wait until buffer space is available.
- Remove errno reset behaviour from sendmmsg and recvmmsg replacement functions.
- Fix unit test for different nsd-control-setup -h exit code.
- Merge #112 from jaredmauch: log old and new serials when NSD
rejects an IXFR due to an old serial number.
- Fix #106: Adhere better to xfrd bounds. Refresh and retry times.
- Fix #105: Clearing hash_tree means just emptying the tree.
New upstream release 4.3.1
BUG FIXES:
- Merge PR #91 by gearnode: nsd-control-setup recreate certificates.
The '-r' option recreates certificates. Without it it creates them
if they do not exist, and does not modify them otherwise.
New upstream release 4.3.0
FEATURES:
- Fix to use getrandom() for randomness, if available.
- Fix #56: Drop sparse TSIG signing support in NSD.
Sign every axfr packet with TSIG, according to the latest
draft-ietf-dnsop-rfc2845bis-06, Section 5.3.1.
- Merge pull request #59 from buddyns: add FreeBSD support
for conf key ip-transparent.
- Add feature to pin server processes to specific cpus.
- Add feature to pin IP addresses to selected server processes.
- Set process title to identify individual processes.
- Merge PR#22: minimise-any: prefer polular and not large RRset,
from Daisuke Higashi.
- Add support for SO_BINDTODEVICE on Linux.
- Add feature to drop queries with opcode UPDATE.
BUG FIXES:
- Fix whitespace in nsd.conf.sample.in, patch from Paul Wouters.
- use-systemd is ignored in nsd.conf, when NSD is compiled with
libsystemd it always signals readiness, if possible.
- Note that use-systemd is not necessary and ignored in man page.
- Fix responses for IXFR so that the authority section is not echoed
in the response.
- Fix that the retry wait does not exceed one day for zone transfers.
- Update keyring as per https://nlnetlabs.nl/people/
New upstream release 4.2.3:
* confine-to-zone configures NSD to not return out-of-zone
additional information.
* pidfile '' allows to run NSD without a pidfile
* adds support for readiness notification with READY_FD
* fix excessive logging of ixfr failures, it stops the log when
fallback to axfr is possible. log is enabled at high verbosity.
* The nsd.conf includes are sorted ascending, for include statements
with a '*' from glob.
* Fix log address and failure reason with tls handshake errors,
squelches (the same as unbound) some unless high verbosity is used.
* Number of different UDP handlers has been reduced to one.
recvmmsg and sendmmsg implementations are now used on all platforms.
* Socket options are now set in designated functions for easy reuse.
* Socket setup has been simplified for easy reuse.
* Configuration parser is now aware of the context in which
an option was specified.
* document that remote-control is a top-level nsd.conf attribute.
- Remove legacy upgrade of nsd users in %post (boo#1157331)
New upstream release 4.2.2:
* Fix #20: CVE-2019-13207 Stack-based Buffer Overflow in the
dname_concatenate() function. Reported by Frederic Cambus.
It causes the zone parser to crash on a malformed zone file,
with assertions enabled, an assertion catches it.
* Fix #19: Out-of-bounds read caused by improper validation of
array index. Reported by Frederic Cambus. The zone parser
fails on type SIG because of mismatched definition with RRSIG.
* PR #23: Fix typo in nsd.conf man-page.
* Fix that NSD warns for wrong length of the hash in SSHFP records.
* Fix #25: NSD doesn't refresh zones after extended downtime,
it refreshes the old zones.
* Set no renegotiation on the SSL context to stop client
session renegotiation.
* Fix #29: SSHFP check NULL pointer dereference.
* Fix #30: SSHFP check failure due to missing domain name.
* Fix to timeval_add in minievent for remaining second in microseconds.
* PR #31: nsd-control: Add missing stdio header.
* PR #32: tsig: Fix compilation without HAVE_SSL.
* Cleanup tls context on xfrd exit.
* Fix #33: Fix segfault in service of remaining streams on exit.
* Fix error message for out of zone data to have more information.
New upstream release 4.2.1:
* FEATURES:
- Added num.tls and num.tls6 stat counters.
- PR #12: send-buffer-size, receive-buffer-size,
tcp-reject-overflow options for nsd.conf, from Jeroen Koekkoek.
- Fix #14, tcp connections have 1/10 to be active and have to work
every second, and then they get time to complete during a reload,
this is a process that lingers with the old version during a version
update.
* BUG FIXES:
- Fix #13: Stray dot at the end of some log entries, removes dot
after updated serial number in log entry.
- Fix TLS cipher selection, the previous was redundant, prefers
CHACHA20-POLY1305 over AESGCM and was not as readable as it
could be.
- Fix #15: crash in SSL library, initialize variables for TCP access
when TLS is configured.
- Fix tls handshake event callback function mistake, reported
by Mykhailo Danylenko.
- Fix output of nsd-checkconf -h.
New upstream release 4.2.0:
* Implement TCP fast open
* Added DNS over TLS
* TLS OCSP stapling support with the tls-service-ocsp option
* New option hide-identity can be used in nsd.conf to stop NSD
from responding with the hostname for probe queries that
elicit the chaos class response, this is conform RFC4892
* Disable TLS1.0, TLS1.1 and weak ciphers, enable CIPHER_SERVER_PREFERENCE
Update to upstream release 4.1.27:
* FEATURES:
- Deny ANY with only one RR in response, by default. Patch from
Daisuke Higashi. The deny-any statement in nsd.conf sets ANY
queries over UDP to be further moved to TCP as well.
Also no additional section processig for type ANY, reducing
the response size.
- Fix #4215: on-the-fly change of TSIG keys with patch from Igor, adds
nsd-control print_tsig, update_tsig, add_tsig, assoc_tsig
and del_tsig. These changes are gone after reload, edit the
config file (or a file included from it) to make changes that
last after restart.
* BUG FIXES:
Update to upstream release 4.1.26:
* FEATURES:
- DNSTAP support for NSD, --enable-dnstap and then config in nsd.conf.
- Support SO_REUSEPORT_LB in FreeBSD 12 with the reuseport: yes
option in nsd.conf.
- Added nsd-control changezone. nsd-control changezone name pattern
allows the change of a zone pattern option without downtime for
the zone, in one operation.
* BUG FIXES:
- Fix #4194: Zone file parser derailed by non-FQDN names in RHS of DNSSEC RRs.
- Fix #4202: nsd-control delzone incorrect exit code on error.
- Fix to not set GLOB_NOSORT so the nsd.conf include: files are
sorted and in a predictable order.
- Fix #3433: document that reconfig does not change per-zone stats.
Update to upstream release 4.1.25:
* FEATURES:
- nsd-control prints neater errors for file failures.
* BUG FIXES:
- Fix that nsec3 precompile deletion happens before the RRs of
the zone are deleted.
- Fix printout of accepted remote control connection for unix sockets.
- Fix use_systemd typo/leftover in remote.c.
- Fix codingstyle in nsd-checkconf.c in patch from Sharp Liu.
- append_trailing_slash has one implementation and is not repeated
differently.
- Fix coding style in nsd.c
- Fix to combine the same error function into one, from Xiaobo Liu.
- Fix initialisation in remote.c.
- please clang analyzer and fix parse of IPSECKEY with bad gateway.
- Fix nsd-checkconf fail on bad zone name.
- Annotate exit functions with noreturn.
- Remove unused if clause during server service startup.
- Fix #4156: Fix systemd service manager state change notification
When it is compiled, systemd readiness signalling is enabled.
The option in nsd.conf is not used, it is ignored when read.
Update to upstream release 4.1.24:
- Features
* #4102: control interface via local socket
* configure --enable-systemd (needs pkg-config and libsystemd) can be
used to then use-systemd: yes in nsd.conf and have readiness signalling
with systemd.
* RFC8162 support, for record type SMIMEA.
- Bug Fixes
* Patch to fix openwrt for mac os build darwin detection in configure.
* Fix that first control-interface determines if TLS is used.
Warn when IP address interfaces are used without TLS.
* #4106: Fix that stats printed from nsd-control are recast from
unsigned long to unsigned (remote.c).
* Fix that type CAA (and URI) in the zone file can contain dots
when not in quotes.
* #4133: Fix that when IXFR contains a zone with broken NSEC3PARAM chain,
NSD leniently attempts to find a working NSEC3PARAM.
Update to upstream release 4.1.23:
- Fix NSD time sensitive TSIG compare vulnerability.
Update to upstream release 4.1.22:
- Features:
* refuse-any sends truncation (+TC) in reply to ANY queries
over UDP, and allows TCP queries like normal.
* Use accept4 to speed up answer of TCP queries
- Bug fixes:
* Fix nsec3 hash of parent and child co-hosted nsec3 enabled zones.
* Fix to use same condition for nsec3 hash allocation and free.
- Changes in version 4.1.21:
- Features:
* --enable-memclean cleans up memory for use with memory checkers,
eg. valgrind.
* refuse-any nsd.conf option that refuses queries of type ANY.
* lower memory usage for tcp connections, so tcp-count can be
higher.
- Bug fixes:
* Fix spelling error in xfr-inspect.
* Fix buffer size warnings from compiler on filename lengths.
Patchnames
openSUSE-2020-2222
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nsd",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nsd fixes the following issues:\n\nnsd was updated to the new upstream release 4.3.4\n\nFEATURES:\n\n- Merge PR #141: ZONEMD RR type.\n\nBUG FIXES:\n\n- Fix that symlink does not interfere with chown of pidfile\n (boo#1179191, CVE-2020-28935)\n- Fix #128: Fix that the invalid port number is logged for sendmmsg failed: Invalid argument.\n- Fix #133: fix 0-init of local ( stack ) buffer.\n- Fix #134: IPV4_MINIMAL_RESPONSE_SIZE vs EDNS_MAX_MESSAGE_LEN.\n- Fix to add missing closest encloser NSEC3 for wildcard nodata type DS answer.\n- Fix #138: NSD returns non-EDNS answer when QUESTION is empty.\n- Fix #142: NODATA answers missin SOA in authority section after CNAME chain.\n\nNew upstream release 4.3.3:\n\nFEATURES:\n\n- Follow DNS flag day 2020 advice and set default EDNS message size to 1232.\n- Merged PR #113 with fixes. Instead of listing an IP-address to\n listen on, an interface name can be specified in nsd.conf, with\n ip-address: eth0. The IP-addresses for that interface are then used.\n\n- New upstream release 4.3.2\n\nFEATURES:\n\n- Fix #96: log-only-syslog: yes sets to only use syslog, fixes\n that the default configuration and systemd results in duplicate\n log messages.\n- Fix #107: nsd -v shows configure line, openssl version and libevent\n version.\n- Fix #103 with #110: min-expire-time option. To provide a lower\n bound for expire period. Expressed in number of seconds or\n refresh+retry+1.\n\nBUG FIXES:\n\n- Fix to omit the listen-on lines from log at startup, unless verbose.\n- Fix #97: EDNS unknown version: query not in response.\n- Fix #99: Fix copying of socket properties with reuseport enabled.\n- Document default value for tcp-timeout.\n- Merge PR#102 from and0x000: add missing default in documentation for drop-updates.\n- Fix unlink of pidfile warning if not possible due to permissions,\n nsd can display the message at high verbosity levels.\n- Removed contrib/nsd.service, example is too complicated and not useful.\n- Merge #108 from Nomis: Make the max-retry-time description clearer.\n- Retry when udp send buffer is full to wait until buffer space is available.\n- Remove errno reset behaviour from sendmmsg and recvmmsg replacement functions.\n- Fix unit test for different nsd-control-setup -h exit code.\n- Merge #112 from jaredmauch: log old and new serials when NSD\n rejects an IXFR due to an old serial number.\n- Fix #106: Adhere better to xfrd bounds. Refresh and retry times.\n- Fix #105: Clearing hash_tree means just emptying the tree.\n\nNew upstream release 4.3.1\n\nBUG FIXES:\n- Merge PR #91 by gearnode: nsd-control-setup recreate certificates.\n The \u0027-r\u0027 option recreates certificates. Without it it creates them\n if they do not exist, and does not modify them otherwise.\n\nNew upstream release 4.3.0\n\nFEATURES:\n\n- Fix to use getrandom() for randomness, if available.\n- Fix #56: Drop sparse TSIG signing support in NSD.\n Sign every axfr packet with TSIG, according to the latest\n draft-ietf-dnsop-rfc2845bis-06, Section 5.3.1.\n- Merge pull request #59 from buddyns: add FreeBSD support\n for conf key ip-transparent.\n- Add feature to pin server processes to specific cpus.\n- Add feature to pin IP addresses to selected server processes.\n- Set process title to identify individual processes.\n- Merge PR#22: minimise-any: prefer polular and not large RRset,\n from Daisuke Higashi.\n- Add support for SO_BINDTODEVICE on Linux.\n- Add feature to drop queries with opcode UPDATE.\n\nBUG FIXES:\n\n- Fix whitespace in nsd.conf.sample.in, patch from Paul Wouters.\n- use-systemd is ignored in nsd.conf, when NSD is compiled with\n libsystemd it always signals readiness, if possible.\n- Note that use-systemd is not necessary and ignored in man page.\n- Fix responses for IXFR so that the authority section is not echoed\n in the response.\n- Fix that the retry wait does not exceed one day for zone transfers.\n\n- Update keyring as per https://nlnetlabs.nl/people/\n\nNew upstream release 4.2.3:\n\n * confine-to-zone configures NSD to not return out-of-zone\n additional information.\n * pidfile \u0027\u0027 allows to run NSD without a pidfile\n * adds support for readiness notification with READY_FD\n * fix excessive logging of ixfr failures, it stops the log when\n fallback to axfr is possible. log is enabled at high verbosity.\n * The nsd.conf includes are sorted ascending, for include statements\n with a \u0027*\u0027 from glob.\n * Fix log address and failure reason with tls handshake errors,\n squelches (the same as unbound) some unless high verbosity is used.\n * Number of different UDP handlers has been reduced to one.\n recvmmsg and sendmmsg implementations are now used on all platforms.\n * Socket options are now set in designated functions for easy reuse.\n * Socket setup has been simplified for easy reuse.\n * Configuration parser is now aware of the context in which\n an option was specified.\n * document that remote-control is a top-level nsd.conf attribute.\n\n- Remove legacy upgrade of nsd users in %post (boo#1157331)\n\nNew upstream release 4.2.2:\n\n * Fix #20: CVE-2019-13207 Stack-based Buffer Overflow in the\n dname_concatenate() function. Reported by Frederic Cambus.\n It causes the zone parser to crash on a malformed zone file,\n with assertions enabled, an assertion catches it.\n * Fix #19: Out-of-bounds read caused by improper validation of\n array index. Reported by Frederic Cambus. The zone parser\n fails on type SIG because of mismatched definition with RRSIG.\n * PR #23: Fix typo in nsd.conf man-page.\n * Fix that NSD warns for wrong length of the hash in SSHFP records.\n * Fix #25: NSD doesn\u0027t refresh zones after extended downtime,\n it refreshes the old zones.\n * Set no renegotiation on the SSL context to stop client\n session renegotiation.\n * Fix #29: SSHFP check NULL pointer dereference.\n * Fix #30: SSHFP check failure due to missing domain name.\n * Fix to timeval_add in minievent for remaining second in microseconds.\n * PR #31: nsd-control: Add missing stdio header.\n * PR #32: tsig: Fix compilation without HAVE_SSL.\n * Cleanup tls context on xfrd exit.\n * Fix #33: Fix segfault in service of remaining streams on exit.\n * Fix error message for out of zone data to have more information.\n\nNew upstream release 4.2.1:\n\n * FEATURES:\n\n - Added num.tls and num.tls6 stat counters.\n - PR #12: send-buffer-size, receive-buffer-size,\n tcp-reject-overflow options for nsd.conf, from Jeroen Koekkoek.\n - Fix #14, tcp connections have 1/10 to be active and have to work\n every second, and then they get time to complete during a reload,\n this is a process that lingers with the old version during a version\n update.\n\n * BUG FIXES:\n\n - Fix #13: Stray dot at the end of some log entries, removes dot\n after updated serial number in log entry.\n - Fix TLS cipher selection, the previous was redundant, prefers\n CHACHA20-POLY1305 over AESGCM and was not as readable as it\n could be.\n - Fix #15: crash in SSL library, initialize variables for TCP access\n when TLS is configured.\n - Fix tls handshake event callback function mistake, reported\n by Mykhailo Danylenko.\n - Fix output of nsd-checkconf -h.\n\nNew upstream release 4.2.0:\n\n * Implement TCP fast open\n * Added DNS over TLS\n * TLS OCSP stapling support with the tls-service-ocsp option\n * New option hide-identity can be used in nsd.conf to stop NSD\n from responding with the hostname for probe queries that\n elicit the chaos class response, this is conform RFC4892\n * Disable TLS1.0, TLS1.1 and weak ciphers, enable CIPHER_SERVER_PREFERENCE\n\nUpdate to upstream release 4.1.27:\n\n* FEATURES:\n\n - Deny ANY with only one RR in response, by default. Patch from\n Daisuke Higashi. The deny-any statement in nsd.conf sets ANY\n queries over UDP to be further moved to TCP as well.\n Also no additional section processig for type ANY, reducing\n the response size.\n - Fix #4215: on-the-fly change of TSIG keys with patch from Igor, adds\n nsd-control print_tsig, update_tsig, add_tsig, assoc_tsig\n and del_tsig. These changes are gone after reload, edit the\n config file (or a file included from it) to make changes that\n last after restart.\n\n* BUG FIXES:\n\nUpdate to upstream release 4.1.26:\n\n * FEATURES:\n\n - DNSTAP support for NSD, --enable-dnstap and then config in nsd.conf.\n - Support SO_REUSEPORT_LB in FreeBSD 12 with the reuseport: yes\n option in nsd.conf.\n - Added nsd-control changezone. nsd-control changezone name pattern\n allows the change of a zone pattern option without downtime for\n the zone, in one operation.\n\n * BUG FIXES:\n\n - Fix #4194: Zone file parser derailed by non-FQDN names in RHS of DNSSEC RRs.\n - Fix #4202: nsd-control delzone incorrect exit code on error.\n - Fix to not set GLOB_NOSORT so the nsd.conf include: files are\n sorted and in a predictable order.\n - Fix #3433: document that reconfig does not change per-zone stats.\n\nUpdate to upstream release 4.1.25:\n\n * FEATURES:\n\n - nsd-control prints neater errors for file failures.\n\n * BUG FIXES:\n\n - Fix that nsec3 precompile deletion happens before the RRs of\n the zone are deleted.\n - Fix printout of accepted remote control connection for unix sockets.\n - Fix use_systemd typo/leftover in remote.c.\n - Fix codingstyle in nsd-checkconf.c in patch from Sharp Liu.\n - append_trailing_slash has one implementation and is not repeated\n differently.\n - Fix coding style in nsd.c\n - Fix to combine the same error function into one, from Xiaobo Liu.\n - Fix initialisation in remote.c.\n - please clang analyzer and fix parse of IPSECKEY with bad gateway.\n - Fix nsd-checkconf fail on bad zone name.\n - Annotate exit functions with noreturn.\n - Remove unused if clause during server service startup.\n - Fix #4156: Fix systemd service manager state change notification\n When it is compiled, systemd readiness signalling is enabled.\n The option in nsd.conf is not used, it is ignored when read.\n\nUpdate to upstream release 4.1.24:\n\n- Features\n\n * #4102: control interface via local socket\n * configure --enable-systemd (needs pkg-config and libsystemd) can be \n used to then use-systemd: yes in nsd.conf and have readiness signalling \n with systemd.\n * RFC8162 support, for record type SMIMEA.\n - Bug Fixes\n * Patch to fix openwrt for mac os build darwin detection in configure.\n * Fix that first control-interface determines if TLS is used.\n Warn when IP address interfaces are used without TLS.\n * #4106: Fix that stats printed from nsd-control are recast from\n unsigned long to unsigned (remote.c).\n * Fix that type CAA (and URI) in the zone file can contain dots\n when not in quotes.\n * #4133: Fix that when IXFR contains a zone with broken NSEC3PARAM chain,\n NSD leniently attempts to find a working NSEC3PARAM.\n\nUpdate to upstream release 4.1.23:\n\n - Fix NSD time sensitive TSIG compare vulnerability.\n\nUpdate to upstream release 4.1.22:\n\n - Features:\n * refuse-any sends truncation (+TC) in reply to ANY queries\n over UDP, and allows TCP queries like normal.\n * Use accept4 to speed up answer of TCP queries\n - Bug fixes:\n * Fix nsec3 hash of parent and child co-hosted nsec3 enabled zones.\n * Fix to use same condition for nsec3 hash allocation and free.\n\n- Changes in version 4.1.21:\n\n - Features:\n * --enable-memclean cleans up memory for use with memory checkers,\n eg. valgrind.\n * refuse-any nsd.conf option that refuses queries of type ANY.\n * lower memory usage for tcp connections, so tcp-count can be\n higher.\n - Bug fixes:\n * Fix spelling error in xfr-inspect.\n * Fix buffer size warnings from compiler on filename lengths.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2020-2222",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_2222-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2020:2222-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5FIDKYB6WSN55OA36HXF3BL4UYWBXAEV/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2020:2222-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5FIDKYB6WSN55OA36HXF3BL4UYWBXAEV/"
},
{
"category": "self",
"summary": "SUSE Bug 1157331",
"url": "https://bugzilla.suse.com/1157331"
},
{
"category": "self",
"summary": "SUSE Bug 1179191",
"url": "https://bugzilla.suse.com/1179191"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-13207 page",
"url": "https://www.suse.com/security/cve/CVE-2019-13207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-28935 page",
"url": "https://www.suse.com/security/cve/CVE-2020-28935/"
}
],
"title": "Security update for nsd",
"tracking": {
"current_release_date": "2020-12-10T11:23:12Z",
"generator": {
"date": "2020-12-10T11:23:12Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2020:2222-1",
"initial_release_date": "2020-12-10T11:23:12Z",
"revision_history": [
{
"date": "2020-12-10T11:23:12Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nsd-4.3.4-bp152.2.3.1.aarch64",
"product": {
"name": "nsd-4.3.4-bp152.2.3.1.aarch64",
"product_id": "nsd-4.3.4-bp152.2.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nsd-4.3.4-bp152.2.3.1.ppc64le",
"product": {
"name": "nsd-4.3.4-bp152.2.3.1.ppc64le",
"product_id": "nsd-4.3.4-bp152.2.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nsd-4.3.4-bp152.2.3.1.s390x",
"product": {
"name": "nsd-4.3.4-bp152.2.3.1.s390x",
"product_id": "nsd-4.3.4-bp152.2.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nsd-4.3.4-bp152.2.3.1.x86_64",
"product": {
"name": "nsd-4.3.4-bp152.2.3.1.x86_64",
"product_id": "nsd-4.3.4-bp152.2.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Package Hub 12",
"product": {
"name": "SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Package Hub 15 SP1",
"product": {
"name": "SUSE Package Hub 15 SP1",
"product_id": "SUSE Package Hub 15 SP1"
}
},
{
"category": "product_name",
"name": "SUSE Package Hub 15 SP2",
"product": {
"name": "SUSE Package Hub 15 SP2",
"product_id": "SUSE Package Hub 15 SP2"
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.1",
"product": {
"name": "openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.1"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.aarch64 as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.aarch64"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.aarch64",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.ppc64le as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.ppc64le"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.ppc64le",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.s390x as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.s390x"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.s390x",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.x86_64 as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.x86_64"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.aarch64 as component of SUSE Package Hub 15 SP1",
"product_id": "SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.aarch64"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.aarch64",
"relates_to_product_reference": "SUSE Package Hub 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.ppc64le as component of SUSE Package Hub 15 SP1",
"product_id": "SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.ppc64le"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.ppc64le",
"relates_to_product_reference": "SUSE Package Hub 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.s390x as component of SUSE Package Hub 15 SP1",
"product_id": "SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.s390x"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.s390x",
"relates_to_product_reference": "SUSE Package Hub 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.x86_64 as component of SUSE Package Hub 15 SP1",
"product_id": "SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.x86_64"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.aarch64 as component of SUSE Package Hub 15 SP2",
"product_id": "SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.aarch64"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.aarch64",
"relates_to_product_reference": "SUSE Package Hub 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.ppc64le as component of SUSE Package Hub 15 SP2",
"product_id": "SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.ppc64le"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.ppc64le",
"relates_to_product_reference": "SUSE Package Hub 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.s390x as component of SUSE Package Hub 15 SP2",
"product_id": "SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.s390x"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.s390x",
"relates_to_product_reference": "SUSE Package Hub 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.x86_64 as component of SUSE Package Hub 15 SP2",
"product_id": "SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.x86_64"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.aarch64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.aarch64"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.ppc64le as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.ppc64le"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.s390x as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.s390x"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.x86_64"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.aarch64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.aarch64"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.ppc64le as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.ppc64le"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.s390x as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.s390x"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nsd-4.3.4-bp152.2.3.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.x86_64"
},
"product_reference": "nsd-4.3.4-bp152.2.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-13207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-13207"
}
],
"notes": [
{
"category": "general",
"text": "nsd-checkzone in NLnet Labs NSD 4.2.0 has a Stack-based Buffer Overflow in the dname_concatenate() function in dname.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-13207",
"url": "https://www.suse.com/security/cve/CVE-2019-13207"
},
{
"category": "external",
"summary": "SUSE Bug 1182952 for CVE-2019-13207",
"url": "https://bugzilla.suse.com/1182952"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-12-10T11:23:12Z",
"details": "moderate"
}
],
"title": "CVE-2019-13207"
},
{
"cve": "CVE-2020-28935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-28935"
}
],
"notes": [
{
"category": "general",
"text": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-28935",
"url": "https://www.suse.com/security/cve/CVE-2020-28935"
},
{
"category": "external",
"summary": "SUSE Bug 1173619 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1173619"
},
{
"category": "external",
"summary": "SUSE Bug 1179191 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1179191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 12:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP1:nsd-4.3.4-bp152.2.3.1.x86_64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.aarch64",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.s390x",
"SUSE Package Hub 15 SP2:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.1:nsd-4.3.4-bp152.2.3.1.x86_64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.aarch64",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.ppc64le",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.s390x",
"openSUSE Leap 15.2:nsd-4.3.4-bp152.2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-12-10T11:23:12Z",
"details": "moderate"
}
],
"title": "CVE-2020-28935"
}
]
}
opensuse-su-2022:0176-1
Vulnerability from csaf_opensuse
Published
2022-01-25 13:13
Modified
2022-01-25 13:13
Summary
Security update for unbound
Notes
Title of the patch
Security update for unbound
Description of the patch
This update for unbound fixes the following issues:
- CVE-2019-25031: Fixed configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack (bsc#1185382).
- CVE-2019-25032: Fixed integer overflow in the regional allocator via regional_alloc (bsc#1185383).
- CVE-2019-25033: Fixed integer overflow in the regional allocator via the ALIGN_UP macro (bsc#1185384).
- CVE-2019-25034: Fixed integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write (bsc#1185385).
- CVE-2019-25035: Fixed out-of-bounds write in sldns_bget_token_par (bsc#1185386).
- CVE-2019-25036: Fixed assertion failure and denial of service in synth_cname (bsc#1185387).
- CVE-2019-25037: Fixed assertion failure and denial of service in dname_pkt_copy via an invalid packet (bsc#1185388).
- CVE-2019-25038: Fixed integer overflow in a size calculation in dnscrypt/dnscrypt.c (bsc#1185389).
- CVE-2019-25039: Fixed integer overflow in a size calculation in respip/respip.c (bsc#1185390).
- CVE-2019-25040: Fixed infinite loop via a compressed name in dname_pkt_copy (bsc#1185391).
- CVE-2019-25041: Fixed assertion failure via a compressed name in dname_pkt_copy (bsc#1185392).
- CVE-2019-25042: Fixed out-of-bounds write via a compressed name in rdata_copy (bsc#1185393).
- CVE-2020-28935: Fixed symbolic link traversal when writing PID file (bsc#1179191).
Patchnames
openSUSE-SLE-15.3-2022-176,openSUSE-SLE-15.4-2022-176
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for unbound",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for unbound fixes the following issues:\n\n- CVE-2019-25031: Fixed configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack (bsc#1185382).\n- CVE-2019-25032: Fixed integer overflow in the regional allocator via regional_alloc (bsc#1185383).\n- CVE-2019-25033: Fixed integer overflow in the regional allocator via the ALIGN_UP macro (bsc#1185384).\n- CVE-2019-25034: Fixed integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write (bsc#1185385).\n- CVE-2019-25035: Fixed out-of-bounds write in sldns_bget_token_par (bsc#1185386).\n- CVE-2019-25036: Fixed assertion failure and denial of service in synth_cname (bsc#1185387).\n- CVE-2019-25037: Fixed assertion failure and denial of service in dname_pkt_copy via an invalid packet (bsc#1185388).\n- CVE-2019-25038: Fixed integer overflow in a size calculation in dnscrypt/dnscrypt.c (bsc#1185389).\n- CVE-2019-25039: Fixed integer overflow in a size calculation in respip/respip.c (bsc#1185390).\n- CVE-2019-25040: Fixed infinite loop via a compressed name in dname_pkt_copy (bsc#1185391).\n- CVE-2019-25041: Fixed assertion failure via a compressed name in dname_pkt_copy (bsc#1185392).\n- CVE-2019-25042: Fixed out-of-bounds write via a compressed name in rdata_copy (bsc#1185393).\n- CVE-2020-28935: Fixed symbolic link traversal when writing PID file (bsc#1179191).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-SLE-15.3-2022-176,openSUSE-SLE-15.4-2022-176",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2022_0176-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2022:0176-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JTS3PI42CZC7TVKVUTBOIMO2PDFTABYC/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2022:0176-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JTS3PI42CZC7TVKVUTBOIMO2PDFTABYC/"
},
{
"category": "self",
"summary": "SUSE Bug 1076963",
"url": "https://bugzilla.suse.com/1076963"
},
{
"category": "self",
"summary": "SUSE Bug 1112009",
"url": "https://bugzilla.suse.com/1112009"
},
{
"category": "self",
"summary": "SUSE Bug 1112033",
"url": "https://bugzilla.suse.com/1112033"
},
{
"category": "self",
"summary": "SUSE Bug 1179191",
"url": "https://bugzilla.suse.com/1179191"
},
{
"category": "self",
"summary": "SUSE Bug 1185382",
"url": "https://bugzilla.suse.com/1185382"
},
{
"category": "self",
"summary": "SUSE Bug 1185383",
"url": "https://bugzilla.suse.com/1185383"
},
{
"category": "self",
"summary": "SUSE Bug 1185384",
"url": "https://bugzilla.suse.com/1185384"
},
{
"category": "self",
"summary": "SUSE Bug 1185385",
"url": "https://bugzilla.suse.com/1185385"
},
{
"category": "self",
"summary": "SUSE Bug 1185386",
"url": "https://bugzilla.suse.com/1185386"
},
{
"category": "self",
"summary": "SUSE Bug 1185387",
"url": "https://bugzilla.suse.com/1185387"
},
{
"category": "self",
"summary": "SUSE Bug 1185388",
"url": "https://bugzilla.suse.com/1185388"
},
{
"category": "self",
"summary": "SUSE Bug 1185389",
"url": "https://bugzilla.suse.com/1185389"
},
{
"category": "self",
"summary": "SUSE Bug 1185390",
"url": "https://bugzilla.suse.com/1185390"
},
{
"category": "self",
"summary": "SUSE Bug 1185391",
"url": "https://bugzilla.suse.com/1185391"
},
{
"category": "self",
"summary": "SUSE Bug 1185392",
"url": "https://bugzilla.suse.com/1185392"
},
{
"category": "self",
"summary": "SUSE Bug 1185393",
"url": "https://bugzilla.suse.com/1185393"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25031 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25032 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25033 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25034 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25034/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25035 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25036 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25036/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25037 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25038 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25038/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25039 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25040 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25040/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25041 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25041/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25042 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-28935 page",
"url": "https://www.suse.com/security/cve/CVE-2020-28935/"
}
],
"title": "Security update for unbound",
"tracking": {
"current_release_date": "2022-01-25T13:13:02Z",
"generator": {
"date": "2022-01-25T13:13:02Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2022:0176-1",
"initial_release_date": "2022-01-25T13:13:02Z",
"revision_history": [
{
"date": "2022-01-25T13:13:02Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.aarch64",
"product": {
"name": "libunbound2-1.6.8-10.6.1.aarch64",
"product_id": "libunbound2-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-1.6.8-10.6.1.aarch64",
"product_id": "unbound-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64",
"product_id": "unbound-anchor-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64",
"product_id": "unbound-devel-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-python-1.6.8-10.6.1.aarch64",
"product_id": "unbound-python-1.6.8-10.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "unbound-munin-1.6.8-10.6.1.noarch",
"product": {
"name": "unbound-munin-1.6.8-10.6.1.noarch",
"product_id": "unbound-munin-1.6.8-10.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.ppc64le",
"product": {
"name": "libunbound2-1.6.8-10.6.1.ppc64le",
"product_id": "libunbound2-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-anchor-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-devel-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-python-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-python-1.6.8-10.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.s390x",
"product": {
"name": "libunbound2-1.6.8-10.6.1.s390x",
"product_id": "libunbound2-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-1.6.8-10.6.1.s390x",
"product_id": "unbound-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.s390x",
"product_id": "unbound-anchor-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.s390x",
"product_id": "unbound-devel-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-python-1.6.8-10.6.1.s390x",
"product_id": "unbound-python-1.6.8-10.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.x86_64",
"product": {
"name": "libunbound2-1.6.8-10.6.1.x86_64",
"product_id": "libunbound2-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-1.6.8-10.6.1.x86_64",
"product_id": "unbound-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64",
"product_id": "unbound-anchor-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64",
"product_id": "unbound-devel-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-python-1.6.8-10.6.1.x86_64",
"product_id": "unbound-python-1.6.8-10.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.3",
"product": {
"name": "openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le"
},
"product_reference": "libunbound2-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x"
},
"product_reference": "libunbound2-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-1.6.8-10.6.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-1.6.8-10.6.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-1.6.8-10.6.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-1.6.8-10.6.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-munin-1.6.8-10.6.1.noarch as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch"
},
"product_reference": "unbound-munin-1.6.8-10.6.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-python-1.6.8-10.6.1.aarch64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-python-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-python-1.6.8-10.6.1.ppc64le as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-python-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-python-1.6.8-10.6.1.s390x as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-python-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-python-1.6.8-10.6.1.x86_64 as component of openSUSE Leap 15.3",
"product_id": "openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-python-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-25031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25031"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session. NOTE: The vendor does not consider this a vulnerability of the Unbound software. create_unbound_ad_servers.sh is a contributed script from the community that facilitates automatic configuration creation. It is not part of the Unbound installation",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25031",
"url": "https://www.suse.com/security/cve/CVE-2019-25031"
},
{
"category": "external",
"summary": "SUSE Bug 1185382 for CVE-2019-25031",
"url": "https://bugzilla.suse.com/1185382"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-25031"
},
{
"cve": "CVE-2019-25032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25032"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in the regional allocator via regional_alloc. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25032",
"url": "https://www.suse.com/security/cve/CVE-2019-25032"
},
{
"category": "external",
"summary": "SUSE Bug 1185383 for CVE-2019-25032",
"url": "https://bugzilla.suse.com/1185383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-25032"
},
{
"cve": "CVE-2019-25033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25033"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in the regional allocator via the ALIGN_UP macro. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25033",
"url": "https://www.suse.com/security/cve/CVE-2019-25033"
},
{
"category": "external",
"summary": "SUSE Bug 1185384 for CVE-2019-25033",
"url": "https://bugzilla.suse.com/1185384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-25033"
},
{
"cve": "CVE-2019-25034",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25034"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25034",
"url": "https://www.suse.com/security/cve/CVE-2019-25034"
},
{
"category": "external",
"summary": "SUSE Bug 1185385 for CVE-2019-25034",
"url": "https://bugzilla.suse.com/1185385"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "important"
}
],
"title": "CVE-2019-25034"
},
{
"cve": "CVE-2019-25035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25035"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token_par. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25035",
"url": "https://www.suse.com/security/cve/CVE-2019-25035"
},
{
"category": "external",
"summary": "SUSE Bug 1185386 for CVE-2019-25035",
"url": "https://bugzilla.suse.com/1185386"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-25035"
},
{
"cve": "CVE-2019-25036",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25036"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure and denial of service in synth_cname. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25036",
"url": "https://www.suse.com/security/cve/CVE-2019-25036"
},
{
"category": "external",
"summary": "SUSE Bug 1185387 for CVE-2019-25036",
"url": "https://bugzilla.suse.com/1185387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-25036"
},
{
"cve": "CVE-2019-25037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25037"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an invalid packet. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25037",
"url": "https://www.suse.com/security/cve/CVE-2019-25037"
},
{
"category": "external",
"summary": "SUSE Bug 1185388 for CVE-2019-25037",
"url": "https://bugzilla.suse.com/1185388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-25037"
},
{
"cve": "CVE-2019-25038",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25038"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in a size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25038",
"url": "https://www.suse.com/security/cve/CVE-2019-25038"
},
{
"category": "external",
"summary": "SUSE Bug 1185389 for CVE-2019-25038",
"url": "https://bugzilla.suse.com/1185389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-25038"
},
{
"cve": "CVE-2019-25039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25039"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25039",
"url": "https://www.suse.com/security/cve/CVE-2019-25039"
},
{
"category": "external",
"summary": "SUSE Bug 1185390 for CVE-2019-25039",
"url": "https://bugzilla.suse.com/1185390"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-25039"
},
{
"cve": "CVE-2019-25040",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25040"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25040",
"url": "https://www.suse.com/security/cve/CVE-2019-25040"
},
{
"category": "external",
"summary": "SUSE Bug 1185391 for CVE-2019-25040",
"url": "https://bugzilla.suse.com/1185391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-25040"
},
{
"cve": "CVE-2019-25041",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25041"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25041",
"url": "https://www.suse.com/security/cve/CVE-2019-25041"
},
{
"category": "external",
"summary": "SUSE Bug 1185392 for CVE-2019-25041",
"url": "https://bugzilla.suse.com/1185392"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-25041"
},
{
"cve": "CVE-2019-25042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25042"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an out-of-bounds write via a compressed name in rdata_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25042",
"url": "https://www.suse.com/security/cve/CVE-2019-25042"
},
{
"category": "external",
"summary": "SUSE Bug 1185393 for CVE-2019-25042",
"url": "https://bugzilla.suse.com/1185393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-25042"
},
{
"cve": "CVE-2020-28935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-28935"
}
],
"notes": [
{
"category": "general",
"text": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-28935",
"url": "https://www.suse.com/security/cve/CVE-2020-28935"
},
{
"category": "external",
"summary": "SUSE Bug 1173619 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1173619"
},
{
"category": "external",
"summary": "SUSE Bug 1179191 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1179191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:libunbound2-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-anchor-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-devel-1.6.8-10.6.1.x86_64",
"openSUSE Leap 15.3:unbound-munin-1.6.8-10.6.1.noarch",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.aarch64",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.ppc64le",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.s390x",
"openSUSE Leap 15.3:unbound-python-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2020-28935"
}
]
}
opensuse-su-2024:11005-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
libunbound8-1.13.2-1.2 on GA media
Notes
Title of the patch
libunbound8-1.13.2-1.2 on GA media
Description of the patch
These are all security issues fixed in the libunbound8-1.13.2-1.2 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11005
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "libunbound8-1.13.2-1.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the libunbound8-1.13.2-1.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11005",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11005-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15105 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16866 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16866/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-18934 page",
"url": "https://www.suse.com/security/cve/CVE-2019-18934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12662 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12662/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12663 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-28935 page",
"url": "https://www.suse.com/security/cve/CVE-2020-28935/"
}
],
"title": "libunbound8-1.13.2-1.2 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11005-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libunbound8-1.13.2-1.2.aarch64",
"product": {
"name": "libunbound8-1.13.2-1.2.aarch64",
"product_id": "libunbound8-1.13.2-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "python3-unbound-1.13.2-1.2.aarch64",
"product": {
"name": "python3-unbound-1.13.2-1.2.aarch64",
"product_id": "python3-unbound-1.13.2-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-1.13.2-1.2.aarch64",
"product": {
"name": "unbound-1.13.2-1.2.aarch64",
"product_id": "unbound-1.13.2-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.13.2-1.2.aarch64",
"product": {
"name": "unbound-anchor-1.13.2-1.2.aarch64",
"product_id": "unbound-anchor-1.13.2-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.13.2-1.2.aarch64",
"product": {
"name": "unbound-devel-1.13.2-1.2.aarch64",
"product_id": "unbound-devel-1.13.2-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-munin-1.13.2-1.2.aarch64",
"product": {
"name": "unbound-munin-1.13.2-1.2.aarch64",
"product_id": "unbound-munin-1.13.2-1.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound8-1.13.2-1.2.ppc64le",
"product": {
"name": "libunbound8-1.13.2-1.2.ppc64le",
"product_id": "libunbound8-1.13.2-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "python3-unbound-1.13.2-1.2.ppc64le",
"product": {
"name": "python3-unbound-1.13.2-1.2.ppc64le",
"product_id": "python3-unbound-1.13.2-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-1.13.2-1.2.ppc64le",
"product": {
"name": "unbound-1.13.2-1.2.ppc64le",
"product_id": "unbound-1.13.2-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.13.2-1.2.ppc64le",
"product": {
"name": "unbound-anchor-1.13.2-1.2.ppc64le",
"product_id": "unbound-anchor-1.13.2-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.13.2-1.2.ppc64le",
"product": {
"name": "unbound-devel-1.13.2-1.2.ppc64le",
"product_id": "unbound-devel-1.13.2-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-munin-1.13.2-1.2.ppc64le",
"product": {
"name": "unbound-munin-1.13.2-1.2.ppc64le",
"product_id": "unbound-munin-1.13.2-1.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound8-1.13.2-1.2.s390x",
"product": {
"name": "libunbound8-1.13.2-1.2.s390x",
"product_id": "libunbound8-1.13.2-1.2.s390x"
}
},
{
"category": "product_version",
"name": "python3-unbound-1.13.2-1.2.s390x",
"product": {
"name": "python3-unbound-1.13.2-1.2.s390x",
"product_id": "python3-unbound-1.13.2-1.2.s390x"
}
},
{
"category": "product_version",
"name": "unbound-1.13.2-1.2.s390x",
"product": {
"name": "unbound-1.13.2-1.2.s390x",
"product_id": "unbound-1.13.2-1.2.s390x"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.13.2-1.2.s390x",
"product": {
"name": "unbound-anchor-1.13.2-1.2.s390x",
"product_id": "unbound-anchor-1.13.2-1.2.s390x"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.13.2-1.2.s390x",
"product": {
"name": "unbound-devel-1.13.2-1.2.s390x",
"product_id": "unbound-devel-1.13.2-1.2.s390x"
}
},
{
"category": "product_version",
"name": "unbound-munin-1.13.2-1.2.s390x",
"product": {
"name": "unbound-munin-1.13.2-1.2.s390x",
"product_id": "unbound-munin-1.13.2-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound8-1.13.2-1.2.x86_64",
"product": {
"name": "libunbound8-1.13.2-1.2.x86_64",
"product_id": "libunbound8-1.13.2-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "python3-unbound-1.13.2-1.2.x86_64",
"product": {
"name": "python3-unbound-1.13.2-1.2.x86_64",
"product_id": "python3-unbound-1.13.2-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-1.13.2-1.2.x86_64",
"product": {
"name": "unbound-1.13.2-1.2.x86_64",
"product_id": "unbound-1.13.2-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.13.2-1.2.x86_64",
"product": {
"name": "unbound-anchor-1.13.2-1.2.x86_64",
"product_id": "unbound-anchor-1.13.2-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.13.2-1.2.x86_64",
"product": {
"name": "unbound-devel-1.13.2-1.2.x86_64",
"product_id": "unbound-devel-1.13.2-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-munin-1.13.2-1.2.x86_64",
"product": {
"name": "unbound-munin-1.13.2-1.2.x86_64",
"product_id": "unbound-munin-1.13.2-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound8-1.13.2-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64"
},
"product_reference": "libunbound8-1.13.2-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound8-1.13.2-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le"
},
"product_reference": "libunbound8-1.13.2-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound8-1.13.2-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x"
},
"product_reference": "libunbound8-1.13.2-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound8-1.13.2-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64"
},
"product_reference": "libunbound8-1.13.2-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-1.13.2-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64"
},
"product_reference": "python3-unbound-1.13.2-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-1.13.2-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le"
},
"product_reference": "python3-unbound-1.13.2-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-1.13.2-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x"
},
"product_reference": "python3-unbound-1.13.2-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-1.13.2-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64"
},
"product_reference": "python3-unbound-1.13.2-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-1.13.2-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64"
},
"product_reference": "unbound-1.13.2-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-1.13.2-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le"
},
"product_reference": "unbound-1.13.2-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-1.13.2-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x"
},
"product_reference": "unbound-1.13.2-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-1.13.2-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64"
},
"product_reference": "unbound-1.13.2-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.13.2-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64"
},
"product_reference": "unbound-anchor-1.13.2-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.13.2-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le"
},
"product_reference": "unbound-anchor-1.13.2-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.13.2-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x"
},
"product_reference": "unbound-anchor-1.13.2-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.13.2-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64"
},
"product_reference": "unbound-anchor-1.13.2-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.13.2-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64"
},
"product_reference": "unbound-devel-1.13.2-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.13.2-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le"
},
"product_reference": "unbound-devel-1.13.2-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.13.2-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x"
},
"product_reference": "unbound-devel-1.13.2-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.13.2-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64"
},
"product_reference": "unbound-devel-1.13.2-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-munin-1.13.2-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64"
},
"product_reference": "unbound-munin-1.13.2-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-munin-1.13.2-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le"
},
"product_reference": "unbound-munin-1.13.2-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-munin-1.13.2-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x"
},
"product_reference": "unbound-munin-1.13.2-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-munin-1.13.2-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
},
"product_reference": "unbound-munin-1.13.2-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-15105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15105"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the way unbound before 1.6.8 validated wildcard-synthesized NSEC records. An improperly validated wildcard NSEC record could be used to prove the non-existence (NXDOMAIN answer) of an existing wildcard record, or trick unbound into accepting a NODATA proof.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15105",
"url": "https://www.suse.com/security/cve/CVE-2017-15105"
},
{
"category": "external",
"summary": "SUSE Bug 1076963 for CVE-2017-15105",
"url": "https://bugzilla.suse.com/1076963"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-15105"
},
{
"cve": "CVE-2019-16866",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16866"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a crash via a crafted NOTIFY query. The source IP address of the query must match an access-control rule.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16866",
"url": "https://www.suse.com/security/cve/CVE-2019-16866"
},
{
"category": "external",
"summary": "SUSE Bug 1152997 for CVE-2019-16866",
"url": "https://bugzilla.suse.com/1152997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-16866"
},
{
"cve": "CVE-2019-18934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-18934"
}
],
"notes": [
{
"category": "general",
"text": "Unbound 1.6.4 through 1.9.4 contain a vulnerability in the ipsec module that can cause shell code execution after receiving a specially crafted answer. This issue can only be triggered if unbound was compiled with `--enable-ipsecmod` support, and ipsecmod is enabled and used in the configuration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-18934",
"url": "https://www.suse.com/security/cve/CVE-2019-18934"
},
{
"category": "external",
"summary": "SUSE Bug 1157268 for CVE-2019-18934",
"url": "https://bugzilla.suse.com/1157268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-18934"
},
{
"cve": "CVE-2020-12662",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-12662"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an \"NXNSAttack\" issue. This is triggered by random subdomains in the NSDNAME in NS records.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-12662",
"url": "https://www.suse.com/security/cve/CVE-2020-12662"
},
{
"category": "external",
"summary": "SUSE Bug 1171889 for CVE-2020-12662",
"url": "https://bugzilla.suse.com/1171889"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-12662"
},
{
"cve": "CVE-2020-12663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-12663"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-12663",
"url": "https://www.suse.com/security/cve/CVE-2020-12663"
},
{
"category": "external",
"summary": "SUSE Bug 1171889 for CVE-2020-12663",
"url": "https://bugzilla.suse.com/1171889"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-12663"
},
{
"cve": "CVE-2020-28935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-28935"
}
],
"notes": [
{
"category": "general",
"text": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-28935",
"url": "https://www.suse.com/security/cve/CVE-2020-28935"
},
{
"category": "external",
"summary": "SUSE Bug 1173619 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1173619"
},
{
"category": "external",
"summary": "SUSE Bug 1179191 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1179191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:libunbound8-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:python3-unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-anchor-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-devel-1.13.2-1.2.x86_64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.aarch64",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.ppc64le",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.s390x",
"openSUSE Tumbleweed:unbound-munin-1.13.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-28935"
}
]
}
rhsa-2022:0632
Vulnerability from csaf_redhat
Published
2022-02-22 15:16
Modified
2024-11-22 16:05
Summary
Red Hat Security Advisory: unbound security update
Notes
Topic
An update for unbound is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.
Security Fix(es):
* unbound: integer overflow in the regional allocator via regional_alloc (CVE-2019-25032)
* unbound: integer overflow in sldns_str2wire_dname_buf_origin can lead to an out-of-bounds write (CVE-2019-25034)
* unbound: out-of-bounds write in sldns_bget_token_par (CVE-2019-25035)
* unbound: assertion failure and denial of service in synth_cname (CVE-2019-25036)
* unbound: assertion failure and denial of service in dname_pkt_copy via an invalid packet (CVE-2019-25037)
* unbound: integer overflow in a size calculation in dnscrypt/dnscrypt.c (CVE-2019-25038)
* unbound: integer overflow in a size calculation in respip/respip.c (CVE-2019-25039)
* unbound: infinite loop via a compressed name in dname_pkt_copy (CVE-2019-25040)
* unbound: assertion failure via a compressed name in dname_pkt_copy (CVE-2019-25041)
* unbound: out-of-bounds write via a compressed name in rdata_copy (CVE-2019-25042)
* unbound: symbolic link traversal when writing PID file (CVE-2020-28935)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for unbound is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. \n\nSecurity Fix(es):\n\n* unbound: integer overflow in the regional allocator via regional_alloc (CVE-2019-25032)\n\n* unbound: integer overflow in sldns_str2wire_dname_buf_origin can lead to an out-of-bounds write (CVE-2019-25034)\n\n* unbound: out-of-bounds write in sldns_bget_token_par (CVE-2019-25035)\n\n* unbound: assertion failure and denial of service in synth_cname (CVE-2019-25036)\n\n* unbound: assertion failure and denial of service in dname_pkt_copy via an invalid packet (CVE-2019-25037)\n\n* unbound: integer overflow in a size calculation in dnscrypt/dnscrypt.c (CVE-2019-25038)\n\n* unbound: integer overflow in a size calculation in respip/respip.c (CVE-2019-25039)\n\n* unbound: infinite loop via a compressed name in dname_pkt_copy (CVE-2019-25040)\n\n* unbound: assertion failure via a compressed name in dname_pkt_copy (CVE-2019-25041)\n\n* unbound: out-of-bounds write via a compressed name in rdata_copy (CVE-2019-25042)\n\n* unbound: symbolic link traversal when writing PID file (CVE-2020-28935)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:0632",
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1878761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1878761"
},
{
"category": "external",
"summary": "1954772",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954772"
},
{
"category": "external",
"summary": "1954778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954778"
},
{
"category": "external",
"summary": "1954780",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954780"
},
{
"category": "external",
"summary": "1954782",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954782"
},
{
"category": "external",
"summary": "1954794",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954794"
},
{
"category": "external",
"summary": "1954796",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954796"
},
{
"category": "external",
"summary": "1954797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954797"
},
{
"category": "external",
"summary": "1954799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954799"
},
{
"category": "external",
"summary": "1954801",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954801"
},
{
"category": "external",
"summary": "1954804",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954804"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0632.json"
}
],
"title": "Red Hat Security Advisory: unbound security update",
"tracking": {
"current_release_date": "2024-11-22T16:05:59+00:00",
"generator": {
"date": "2024-11-22T16:05:59+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2022:0632",
"initial_release_date": "2022-02-22T15:16:51+00:00",
"revision_history": [
{
"date": "2022-02-22T15:16:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-02-22T15:16:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T16:05:59+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:8.2::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-unbound-0:1.7.3-12.el8_2.aarch64",
"product": {
"name": "python3-unbound-0:1.7.3-12.el8_2.aarch64",
"product_id": "python3-unbound-0:1.7.3-12.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound@1.7.3-12.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-0:1.7.3-12.el8_2.aarch64",
"product": {
"name": "unbound-0:1.7.3-12.el8_2.aarch64",
"product_id": "unbound-0:1.7.3-12.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound@1.7.3-12.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-devel-0:1.7.3-12.el8_2.aarch64",
"product": {
"name": "unbound-devel-0:1.7.3-12.el8_2.aarch64",
"product_id": "unbound-devel-0:1.7.3-12.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-devel@1.7.3-12.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-0:1.7.3-12.el8_2.aarch64",
"product": {
"name": "unbound-libs-0:1.7.3-12.el8_2.aarch64",
"product_id": "unbound-libs-0:1.7.3-12.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs@1.7.3-12.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"product": {
"name": "unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"product_id": "unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debugsource@1.7.3-12.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"product": {
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"product_id": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.7.3-12.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"product": {
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"product_id": "unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debuginfo@1.7.3-12.el8_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"product": {
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"product_id": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.7.3-12.el8_2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"product": {
"name": "python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"product_id": "python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound@1.7.3-12.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-0:1.7.3-12.el8_2.ppc64le",
"product": {
"name": "unbound-0:1.7.3-12.el8_2.ppc64le",
"product_id": "unbound-0:1.7.3-12.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound@1.7.3-12.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"product": {
"name": "unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"product_id": "unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-devel@1.7.3-12.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"product": {
"name": "unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"product_id": "unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs@1.7.3-12.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"product": {
"name": "unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"product_id": "unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debugsource@1.7.3-12.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"product": {
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"product_id": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.7.3-12.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"product": {
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"product_id": "unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debuginfo@1.7.3-12.el8_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"product": {
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"product_id": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.7.3-12.el8_2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-unbound-0:1.7.3-12.el8_2.x86_64",
"product": {
"name": "python3-unbound-0:1.7.3-12.el8_2.x86_64",
"product_id": "python3-unbound-0:1.7.3-12.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound@1.7.3-12.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-0:1.7.3-12.el8_2.x86_64",
"product": {
"name": "unbound-0:1.7.3-12.el8_2.x86_64",
"product_id": "unbound-0:1.7.3-12.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound@1.7.3-12.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-devel-0:1.7.3-12.el8_2.x86_64",
"product": {
"name": "unbound-devel-0:1.7.3-12.el8_2.x86_64",
"product_id": "unbound-devel-0:1.7.3-12.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-devel@1.7.3-12.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-0:1.7.3-12.el8_2.x86_64",
"product": {
"name": "unbound-libs-0:1.7.3-12.el8_2.x86_64",
"product_id": "unbound-libs-0:1.7.3-12.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs@1.7.3-12.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"product": {
"name": "unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"product_id": "unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debugsource@1.7.3-12.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"product": {
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"product_id": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.7.3-12.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"product": {
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"product_id": "unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debuginfo@1.7.3-12.el8_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64",
"product": {
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64",
"product_id": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.7.3-12.el8_2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "unbound-devel-0:1.7.3-12.el8_2.i686",
"product": {
"name": "unbound-devel-0:1.7.3-12.el8_2.i686",
"product_id": "unbound-devel-0:1.7.3-12.el8_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-devel@1.7.3-12.el8_2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-0:1.7.3-12.el8_2.i686",
"product": {
"name": "unbound-libs-0:1.7.3-12.el8_2.i686",
"product_id": "unbound-libs-0:1.7.3-12.el8_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs@1.7.3-12.el8_2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "unbound-debugsource-0:1.7.3-12.el8_2.i686",
"product": {
"name": "unbound-debugsource-0:1.7.3-12.el8_2.i686",
"product_id": "unbound-debugsource-0:1.7.3-12.el8_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debugsource@1.7.3-12.el8_2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"product": {
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"product_id": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.7.3-12.el8_2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"product": {
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"product_id": "unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debuginfo@1.7.3-12.el8_2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"product": {
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"product_id": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.7.3-12.el8_2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-unbound-0:1.7.3-12.el8_2.s390x",
"product": {
"name": "python3-unbound-0:1.7.3-12.el8_2.s390x",
"product_id": "python3-unbound-0:1.7.3-12.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound@1.7.3-12.el8_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-0:1.7.3-12.el8_2.s390x",
"product": {
"name": "unbound-0:1.7.3-12.el8_2.s390x",
"product_id": "unbound-0:1.7.3-12.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound@1.7.3-12.el8_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-devel-0:1.7.3-12.el8_2.s390x",
"product": {
"name": "unbound-devel-0:1.7.3-12.el8_2.s390x",
"product_id": "unbound-devel-0:1.7.3-12.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-devel@1.7.3-12.el8_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-0:1.7.3-12.el8_2.s390x",
"product": {
"name": "unbound-libs-0:1.7.3-12.el8_2.s390x",
"product_id": "unbound-libs-0:1.7.3-12.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs@1.7.3-12.el8_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"product": {
"name": "unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"product_id": "unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debugsource@1.7.3-12.el8_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"product": {
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"product_id": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.7.3-12.el8_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"product": {
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"product_id": "unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debuginfo@1.7.3-12.el8_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"product": {
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"product_id": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.7.3-12.el8_2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "unbound-0:1.7.3-12.el8_2.src",
"product": {
"name": "unbound-0:1.7.3-12.el8_2.src",
"product_id": "unbound-0:1.7.3-12.el8_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound@1.7.3-12.el8_2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-0:1.7.3-12.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64"
},
"product_reference": "python3-unbound-0:1.7.3-12.el8_2.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-0:1.7.3-12.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le"
},
"product_reference": "python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-0:1.7.3-12.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x"
},
"product_reference": "python3-unbound-0:1.7.3-12.el8_2.s390x",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-0:1.7.3-12.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64"
},
"product_reference": "python3-unbound-0:1.7.3-12.el8_2.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64"
},
"product_reference": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686"
},
"product_reference": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le"
},
"product_reference": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x"
},
"product_reference": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64"
},
"product_reference": "python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-0:1.7.3-12.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64"
},
"product_reference": "unbound-0:1.7.3-12.el8_2.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-0:1.7.3-12.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le"
},
"product_reference": "unbound-0:1.7.3-12.el8_2.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-0:1.7.3-12.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x"
},
"product_reference": "unbound-0:1.7.3-12.el8_2.s390x",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-0:1.7.3-12.el8_2.src as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src"
},
"product_reference": "unbound-0:1.7.3-12.el8_2.src",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-0:1.7.3-12.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64"
},
"product_reference": "unbound-0:1.7.3-12.el8_2.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64"
},
"product_reference": "unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686"
},
"product_reference": "unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le"
},
"product_reference": "unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x"
},
"product_reference": "unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debuginfo-0:1.7.3-12.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64"
},
"product_reference": "unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debugsource-0:1.7.3-12.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64"
},
"product_reference": "unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debugsource-0:1.7.3-12.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686"
},
"product_reference": "unbound-debugsource-0:1.7.3-12.el8_2.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debugsource-0:1.7.3-12.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le"
},
"product_reference": "unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debugsource-0:1.7.3-12.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x"
},
"product_reference": "unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debugsource-0:1.7.3-12.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64"
},
"product_reference": "unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-0:1.7.3-12.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64"
},
"product_reference": "unbound-devel-0:1.7.3-12.el8_2.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-0:1.7.3-12.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686"
},
"product_reference": "unbound-devel-0:1.7.3-12.el8_2.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-0:1.7.3-12.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le"
},
"product_reference": "unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-0:1.7.3-12.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x"
},
"product_reference": "unbound-devel-0:1.7.3-12.el8_2.s390x",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-0:1.7.3-12.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64"
},
"product_reference": "unbound-devel-0:1.7.3-12.el8_2.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-0:1.7.3-12.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64"
},
"product_reference": "unbound-libs-0:1.7.3-12.el8_2.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-0:1.7.3-12.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686"
},
"product_reference": "unbound-libs-0:1.7.3-12.el8_2.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-0:1.7.3-12.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le"
},
"product_reference": "unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-0:1.7.3-12.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x"
},
"product_reference": "unbound-libs-0:1.7.3-12.el8_2.s390x",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-0:1.7.3-12.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64"
},
"product_reference": "unbound-libs-0:1.7.3-12.el8_2.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64"
},
"product_reference": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686"
},
"product_reference": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le"
},
"product_reference": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x"
},
"product_reference": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
},
"product_reference": "unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-25032",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954772"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An integer overflow in regional_alloc function may lead to a buffer overflow of the allocated buffer if the size can be controlled by an attacker and can be big enough. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: integer overflow in the regional allocator via regional_alloc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the buffer overflow can happen in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25032"
},
{
"category": "external",
"summary": "RHBZ#1954772",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954772"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25032",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25032"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25032",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25032"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-02-22T15:16:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: integer overflow in the regional allocator via regional_alloc"
},
{
"cve": "CVE-2019-25034",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954778"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An integer overflow in the sldns_str2wire_dname_buf_origin function may lead to a buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: integer overflow in sldns_str2wire_dname_buf_origin can lead to an out-of-bounds write",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the buffer overflow can happen in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25034"
},
{
"category": "external",
"summary": "RHBZ#1954778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954778"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25034",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25034"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25034",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25034"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-02-22T15:16:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: integer overflow in sldns_str2wire_dname_buf_origin can lead to an out-of-bounds write"
},
{
"cve": "CVE-2019-25035",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954780"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An out-of-bounds write in the sldns_bget_token_par function may be abused by a remote attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: out-of-bounds write in sldns_bget_token_par",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the out-of-bounds write can happen in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25035"
},
{
"category": "external",
"summary": "RHBZ#1954780",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954780"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25035",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25035"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25035",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25035"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-02-22T15:16:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: out-of-bounds write in sldns_bget_token_par"
},
{
"cve": "CVE-2019-25036",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954782"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. A reachable assertion in the synth_cname function can be triggered by sending invalid packets to the server. If asserts are disabled during compilation, this issue might lead to an out-of-bounds write in dname_pkt_copy function. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: assertion failure and denial of service in synth_cname",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue could not be triggered by running unbound regularly, but only by injecting the packet directly to the vulnerable function through fuzzing. For this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25036"
},
{
"category": "external",
"summary": "RHBZ#1954782",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954782"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25036",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25036"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25036",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25036"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-02-22T15:16:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: assertion failure and denial of service in synth_cname"
},
{
"cve": "CVE-2019-25037",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954794"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. A reachable assertion in the dname_pkt_copy function can be triggered by sending invalid packets to the server. The highest threat from this vulnerability is to service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: assertion failure and denial of service in dname_pkt_copy via an invalid packet",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Upstream has disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25037"
},
{
"category": "external",
"summary": "RHBZ#1954794",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954794"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25037",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25037"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25037",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25037"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-02-22T15:16:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: assertion failure and denial of service in dname_pkt_copy via an invalid packet"
},
{
"cve": "CVE-2019-25038",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954796"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An integer overflow in dnsc_load_local_data function may lead to a buffer overflow of the allocated buffer if the size can be controlled by an attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: integer overflow in a size calculation in dnscrypt/dnscrypt.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the integer overflow can lead to a buffer overflow in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25038"
},
{
"category": "external",
"summary": "RHBZ#1954796",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954796"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25038",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25038"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25038",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25038"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-02-22T15:16:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: integer overflow in a size calculation in dnscrypt/dnscrypt.c"
},
{
"cve": "CVE-2019-25039",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954797"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An integer overflow in ub_packed_rrset_key function may lead to a buffer overflow of the allocated buffer if the size can be controlled by an attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: integer overflow in a size calculation in respip/respip.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the integer overflow can lead to a buffer overflow in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25039"
},
{
"category": "external",
"summary": "RHBZ#1954797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954797"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25039",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25039"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25039",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25039"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-02-22T15:16:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: integer overflow in a size calculation in respip/respip.c"
},
{
"cve": "CVE-2019-25040",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954799"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An infinite loop in dname_pkt_copy function could be triggered by a remote attacker. The highest threat from this vulnerability is to service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: infinite loop via a compressed name in dname_pkt_copy",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the infinite loop can be triggered in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25040"
},
{
"category": "external",
"summary": "RHBZ#1954799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954799"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25040",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25040"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25040",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25040"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-02-22T15:16:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: infinite loop via a compressed name in dname_pkt_copy"
},
{
"cve": "CVE-2019-25041",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954801"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. A reachable assertion in the dname_pkt_copy function can be triggered through compressed names. The highest threat from this vulnerability is to service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: assertion failure via a compressed name in dname_pkt_copy",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "According to the original report there are checks happening before the affected function that make this not exploitable. For these reasons its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25041"
},
{
"category": "external",
"summary": "RHBZ#1954801",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954801"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25041",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25041"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-02-22T15:16:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: assertion failure via a compressed name in dname_pkt_copy"
},
{
"cve": "CVE-2019-25042",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954804"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An out-of-bounds write in the rdata_copy function may be abused by a remote attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: out-of-bounds write via a compressed name in rdata_copy",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "According to the original report there are checks happening before the affected function that make this not exploitable. For these reasons its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25042"
},
{
"category": "external",
"summary": "RHBZ#1954804",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954804"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25042",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25042"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25042",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25042"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-02-22T15:16:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: out-of-bounds write via a compressed name in rdata_copy"
},
{
"acknowledgments": [
{
"names": [
"Mason Loring Bliss"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2020-28935",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2020-09-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1878761"
}
],
"notes": [
{
"category": "description",
"text": "A symbolic link traversal vulnerability was found in unbound in the way it writes its PID file while starting up. This flaw allows a local attacker with access to the unbound user to set up a link to another file, owned by root, and make unbound overwrite it during its next restart, destroying the original content. The highest threat from this vulnerability is integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: symbolic link traversal when writing PID file",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-28935"
},
{
"category": "external",
"summary": "RHBZ#1878761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1878761"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-28935",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28935"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-28935",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-28935"
}
],
"release_date": "2020-09-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-02-22T15:16:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:0632"
},
{
"category": "workaround",
"details": "If SELinux is enabled in Enforcing mode (the default value in Red Hat Enterprise Linux 8), this kind of attack is prevented as unbound would be blocked from accessing the symbolic link file.",
"product_ids": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:python3-unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.src",
"AppStream-8.2.0.Z.EUS:unbound-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debuginfo-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-debugsource-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-devel-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-0:1.7.3-12.el8_2.x86_64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.aarch64",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.i686",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.ppc64le",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.s390x",
"AppStream-8.2.0.Z.EUS:unbound-libs-debuginfo-0:1.7.3-12.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "unbound: symbolic link traversal when writing PID file"
}
]
}
rhsa-2021:1853
Vulnerability from csaf_redhat
Published
2021-05-18 14:39
Modified
2024-11-22 16:05
Summary
Red Hat Security Advisory: unbound security, bug fix, and enhancement update
Notes
Topic
An update for unbound is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.
Security Fix(es):
* unbound: integer overflow in the regional allocator via regional_alloc (CVE-2019-25032)
* unbound: integer overflow in sldns_str2wire_dname_buf_origin can lead to an out-of-bounds write (CVE-2019-25034)
* unbound: out-of-bounds write in sldns_bget_token_par (CVE-2019-25035)
* unbound: assertion failure and denial of service in synth_cname (CVE-2019-25036)
* unbound: assertion failure and denial of service in dname_pkt_copy via an invalid packet (CVE-2019-25037)
* unbound: integer overflow in a size calculation in dnscrypt/dnscrypt.c (CVE-2019-25038)
* unbound: integer overflow in a size calculation in respip/respip.c (CVE-2019-25039)
* unbound: infinite loop via a compressed name in dname_pkt_copy (CVE-2019-25040)
* unbound: assertion failure via a compressed name in dname_pkt_copy (CVE-2019-25041)
* unbound: out-of-bounds write via a compressed name in rdata_copy (CVE-2019-25042)
* unbound: symbolic link traversal when writing PID file (CVE-2020-28935)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for unbound is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. \n\nSecurity Fix(es):\n\n* unbound: integer overflow in the regional allocator via regional_alloc (CVE-2019-25032)\n\n* unbound: integer overflow in sldns_str2wire_dname_buf_origin can lead to an out-of-bounds write (CVE-2019-25034)\n\n* unbound: out-of-bounds write in sldns_bget_token_par (CVE-2019-25035)\n\n* unbound: assertion failure and denial of service in synth_cname (CVE-2019-25036)\n\n* unbound: assertion failure and denial of service in dname_pkt_copy via an invalid packet (CVE-2019-25037)\n\n* unbound: integer overflow in a size calculation in dnscrypt/dnscrypt.c (CVE-2019-25038)\n\n* unbound: integer overflow in a size calculation in respip/respip.c (CVE-2019-25039)\n\n* unbound: infinite loop via a compressed name in dname_pkt_copy (CVE-2019-25040)\n\n* unbound: assertion failure via a compressed name in dname_pkt_copy (CVE-2019-25041)\n\n* unbound: out-of-bounds write via a compressed name in rdata_copy (CVE-2019-25042)\n\n* unbound: symbolic link traversal when writing PID file (CVE-2020-28935)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1853",
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/"
},
{
"category": "external",
"summary": "1714175",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1714175"
},
{
"category": "external",
"summary": "1842837",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842837"
},
{
"category": "external",
"summary": "1850460",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1850460"
},
{
"category": "external",
"summary": "1878761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1878761"
},
{
"category": "external",
"summary": "1954772",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954772"
},
{
"category": "external",
"summary": "1954778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954778"
},
{
"category": "external",
"summary": "1954780",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954780"
},
{
"category": "external",
"summary": "1954782",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954782"
},
{
"category": "external",
"summary": "1954794",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954794"
},
{
"category": "external",
"summary": "1954796",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954796"
},
{
"category": "external",
"summary": "1954797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954797"
},
{
"category": "external",
"summary": "1954799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954799"
},
{
"category": "external",
"summary": "1954801",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954801"
},
{
"category": "external",
"summary": "1954804",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954804"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1853.json"
}
],
"title": "Red Hat Security Advisory: unbound security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2024-11-22T16:05:51+00:00",
"generator": {
"date": "2024-11-22T16:05:51+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2021:1853",
"initial_release_date": "2021-05-18T14:39:25+00:00",
"revision_history": [
{
"date": "2021-05-18T14:39:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-05-18T14:39:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T16:05:51+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-unbound-0:1.7.3-15.el8.s390x",
"product": {
"name": "python3-unbound-0:1.7.3-15.el8.s390x",
"product_id": "python3-unbound-0:1.7.3-15.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound@1.7.3-15.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-0:1.7.3-15.el8.s390x",
"product": {
"name": "unbound-0:1.7.3-15.el8.s390x",
"product_id": "unbound-0:1.7.3-15.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound@1.7.3-15.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-devel-0:1.7.3-15.el8.s390x",
"product": {
"name": "unbound-devel-0:1.7.3-15.el8.s390x",
"product_id": "unbound-devel-0:1.7.3-15.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-devel@1.7.3-15.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-0:1.7.3-15.el8.s390x",
"product": {
"name": "unbound-libs-0:1.7.3-15.el8.s390x",
"product_id": "unbound-libs-0:1.7.3-15.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs@1.7.3-15.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-debugsource-0:1.7.3-15.el8.s390x",
"product": {
"name": "unbound-debugsource-0:1.7.3-15.el8.s390x",
"product_id": "unbound-debugsource-0:1.7.3-15.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debugsource@1.7.3-15.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"product": {
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"product_id": "python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.7.3-15.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-debuginfo-0:1.7.3-15.el8.s390x",
"product": {
"name": "unbound-debuginfo-0:1.7.3-15.el8.s390x",
"product_id": "unbound-debuginfo-0:1.7.3-15.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debuginfo@1.7.3-15.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"product": {
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"product_id": "unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.7.3-15.el8?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-unbound-0:1.7.3-15.el8.x86_64",
"product": {
"name": "python3-unbound-0:1.7.3-15.el8.x86_64",
"product_id": "python3-unbound-0:1.7.3-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound@1.7.3-15.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-0:1.7.3-15.el8.x86_64",
"product": {
"name": "unbound-0:1.7.3-15.el8.x86_64",
"product_id": "unbound-0:1.7.3-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound@1.7.3-15.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-devel-0:1.7.3-15.el8.x86_64",
"product": {
"name": "unbound-devel-0:1.7.3-15.el8.x86_64",
"product_id": "unbound-devel-0:1.7.3-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-devel@1.7.3-15.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-0:1.7.3-15.el8.x86_64",
"product": {
"name": "unbound-libs-0:1.7.3-15.el8.x86_64",
"product_id": "unbound-libs-0:1.7.3-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs@1.7.3-15.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-debugsource-0:1.7.3-15.el8.x86_64",
"product": {
"name": "unbound-debugsource-0:1.7.3-15.el8.x86_64",
"product_id": "unbound-debugsource-0:1.7.3-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debugsource@1.7.3-15.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"product": {
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"product_id": "python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.7.3-15.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"product": {
"name": "unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"product_id": "unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debuginfo@1.7.3-15.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64",
"product": {
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64",
"product_id": "unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.7.3-15.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "unbound-devel-0:1.7.3-15.el8.i686",
"product": {
"name": "unbound-devel-0:1.7.3-15.el8.i686",
"product_id": "unbound-devel-0:1.7.3-15.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-devel@1.7.3-15.el8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-0:1.7.3-15.el8.i686",
"product": {
"name": "unbound-libs-0:1.7.3-15.el8.i686",
"product_id": "unbound-libs-0:1.7.3-15.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs@1.7.3-15.el8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "unbound-debugsource-0:1.7.3-15.el8.i686",
"product": {
"name": "unbound-debugsource-0:1.7.3-15.el8.i686",
"product_id": "unbound-debugsource-0:1.7.3-15.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debugsource@1.7.3-15.el8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"product": {
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"product_id": "python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.7.3-15.el8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "unbound-debuginfo-0:1.7.3-15.el8.i686",
"product": {
"name": "unbound-debuginfo-0:1.7.3-15.el8.i686",
"product_id": "unbound-debuginfo-0:1.7.3-15.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debuginfo@1.7.3-15.el8?arch=i686"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"product": {
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"product_id": "unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.7.3-15.el8?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-unbound-0:1.7.3-15.el8.ppc64le",
"product": {
"name": "python3-unbound-0:1.7.3-15.el8.ppc64le",
"product_id": "python3-unbound-0:1.7.3-15.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound@1.7.3-15.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-0:1.7.3-15.el8.ppc64le",
"product": {
"name": "unbound-0:1.7.3-15.el8.ppc64le",
"product_id": "unbound-0:1.7.3-15.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound@1.7.3-15.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-devel-0:1.7.3-15.el8.ppc64le",
"product": {
"name": "unbound-devel-0:1.7.3-15.el8.ppc64le",
"product_id": "unbound-devel-0:1.7.3-15.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-devel@1.7.3-15.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-0:1.7.3-15.el8.ppc64le",
"product": {
"name": "unbound-libs-0:1.7.3-15.el8.ppc64le",
"product_id": "unbound-libs-0:1.7.3-15.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs@1.7.3-15.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"product": {
"name": "unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"product_id": "unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debugsource@1.7.3-15.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"product": {
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"product_id": "python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.7.3-15.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"product": {
"name": "unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"product_id": "unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debuginfo@1.7.3-15.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"product": {
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"product_id": "unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.7.3-15.el8?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python3-unbound-0:1.7.3-15.el8.aarch64",
"product": {
"name": "python3-unbound-0:1.7.3-15.el8.aarch64",
"product_id": "python3-unbound-0:1.7.3-15.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound@1.7.3-15.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-0:1.7.3-15.el8.aarch64",
"product": {
"name": "unbound-0:1.7.3-15.el8.aarch64",
"product_id": "unbound-0:1.7.3-15.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound@1.7.3-15.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-devel-0:1.7.3-15.el8.aarch64",
"product": {
"name": "unbound-devel-0:1.7.3-15.el8.aarch64",
"product_id": "unbound-devel-0:1.7.3-15.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-devel@1.7.3-15.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-0:1.7.3-15.el8.aarch64",
"product": {
"name": "unbound-libs-0:1.7.3-15.el8.aarch64",
"product_id": "unbound-libs-0:1.7.3-15.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs@1.7.3-15.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-debugsource-0:1.7.3-15.el8.aarch64",
"product": {
"name": "unbound-debugsource-0:1.7.3-15.el8.aarch64",
"product_id": "unbound-debugsource-0:1.7.3-15.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debugsource@1.7.3-15.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"product": {
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"product_id": "python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.7.3-15.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"product": {
"name": "unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"product_id": "unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-debuginfo@1.7.3-15.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"product": {
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"product_id": "unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.7.3-15.el8?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "unbound-0:1.7.3-15.el8.src",
"product": {
"name": "unbound-0:1.7.3-15.el8.src",
"product_id": "unbound-0:1.7.3-15.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/unbound@1.7.3-15.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-0:1.7.3-15.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64"
},
"product_reference": "python3-unbound-0:1.7.3-15.el8.aarch64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-0:1.7.3-15.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le"
},
"product_reference": "python3-unbound-0:1.7.3-15.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-0:1.7.3-15.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x"
},
"product_reference": "python3-unbound-0:1.7.3-15.el8.s390x",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-0:1.7.3-15.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64"
},
"product_reference": "python3-unbound-0:1.7.3-15.el8.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64"
},
"product_reference": "python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686"
},
"product_reference": "python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le"
},
"product_reference": "python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x"
},
"product_reference": "python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64"
},
"product_reference": "python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-0:1.7.3-15.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64"
},
"product_reference": "unbound-0:1.7.3-15.el8.aarch64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-0:1.7.3-15.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le"
},
"product_reference": "unbound-0:1.7.3-15.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-0:1.7.3-15.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x"
},
"product_reference": "unbound-0:1.7.3-15.el8.s390x",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-0:1.7.3-15.el8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src"
},
"product_reference": "unbound-0:1.7.3-15.el8.src",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-0:1.7.3-15.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64"
},
"product_reference": "unbound-0:1.7.3-15.el8.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debuginfo-0:1.7.3-15.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64"
},
"product_reference": "unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debuginfo-0:1.7.3-15.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686"
},
"product_reference": "unbound-debuginfo-0:1.7.3-15.el8.i686",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debuginfo-0:1.7.3-15.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le"
},
"product_reference": "unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debuginfo-0:1.7.3-15.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x"
},
"product_reference": "unbound-debuginfo-0:1.7.3-15.el8.s390x",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debuginfo-0:1.7.3-15.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64"
},
"product_reference": "unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debugsource-0:1.7.3-15.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64"
},
"product_reference": "unbound-debugsource-0:1.7.3-15.el8.aarch64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debugsource-0:1.7.3-15.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686"
},
"product_reference": "unbound-debugsource-0:1.7.3-15.el8.i686",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debugsource-0:1.7.3-15.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le"
},
"product_reference": "unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debugsource-0:1.7.3-15.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x"
},
"product_reference": "unbound-debugsource-0:1.7.3-15.el8.s390x",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-debugsource-0:1.7.3-15.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64"
},
"product_reference": "unbound-debugsource-0:1.7.3-15.el8.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-0:1.7.3-15.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64"
},
"product_reference": "unbound-devel-0:1.7.3-15.el8.aarch64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-0:1.7.3-15.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686"
},
"product_reference": "unbound-devel-0:1.7.3-15.el8.i686",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-0:1.7.3-15.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le"
},
"product_reference": "unbound-devel-0:1.7.3-15.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-0:1.7.3-15.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x"
},
"product_reference": "unbound-devel-0:1.7.3-15.el8.s390x",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-0:1.7.3-15.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64"
},
"product_reference": "unbound-devel-0:1.7.3-15.el8.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-0:1.7.3-15.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64"
},
"product_reference": "unbound-libs-0:1.7.3-15.el8.aarch64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-0:1.7.3-15.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686"
},
"product_reference": "unbound-libs-0:1.7.3-15.el8.i686",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-0:1.7.3-15.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le"
},
"product_reference": "unbound-libs-0:1.7.3-15.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-0:1.7.3-15.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x"
},
"product_reference": "unbound-libs-0:1.7.3-15.el8.s390x",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-0:1.7.3-15.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64"
},
"product_reference": "unbound-libs-0:1.7.3-15.el8.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64"
},
"product_reference": "unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686"
},
"product_reference": "unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le"
},
"product_reference": "unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x"
},
"product_reference": "unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"relates_to_product_reference": "AppStream-8.4.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
},
"product_reference": "unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.GA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-25032",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954772"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An integer overflow in regional_alloc function may lead to a buffer overflow of the allocated buffer if the size can be controlled by an attacker and can be big enough. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: integer overflow in the regional allocator via regional_alloc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the buffer overflow can happen in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25032"
},
{
"category": "external",
"summary": "RHBZ#1954772",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954772"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25032",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25032"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25032",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25032"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T14:39:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: integer overflow in the regional allocator via regional_alloc"
},
{
"cve": "CVE-2019-25034",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954778"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An integer overflow in the sldns_str2wire_dname_buf_origin function may lead to a buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: integer overflow in sldns_str2wire_dname_buf_origin can lead to an out-of-bounds write",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the buffer overflow can happen in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25034"
},
{
"category": "external",
"summary": "RHBZ#1954778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954778"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25034",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25034"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25034",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25034"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T14:39:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: integer overflow in sldns_str2wire_dname_buf_origin can lead to an out-of-bounds write"
},
{
"cve": "CVE-2019-25035",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954780"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An out-of-bounds write in the sldns_bget_token_par function may be abused by a remote attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: out-of-bounds write in sldns_bget_token_par",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the out-of-bounds write can happen in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25035"
},
{
"category": "external",
"summary": "RHBZ#1954780",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954780"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25035",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25035"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25035",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25035"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T14:39:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: out-of-bounds write in sldns_bget_token_par"
},
{
"cve": "CVE-2019-25036",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954782"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. A reachable assertion in the synth_cname function can be triggered by sending invalid packets to the server. If asserts are disabled during compilation, this issue might lead to an out-of-bounds write in dname_pkt_copy function. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: assertion failure and denial of service in synth_cname",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue could not be triggered by running unbound regularly, but only by injecting the packet directly to the vulnerable function through fuzzing. For this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25036"
},
{
"category": "external",
"summary": "RHBZ#1954782",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954782"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25036",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25036"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25036",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25036"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T14:39:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: assertion failure and denial of service in synth_cname"
},
{
"cve": "CVE-2019-25037",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954794"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. A reachable assertion in the dname_pkt_copy function can be triggered by sending invalid packets to the server. The highest threat from this vulnerability is to service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: assertion failure and denial of service in dname_pkt_copy via an invalid packet",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Upstream has disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25037"
},
{
"category": "external",
"summary": "RHBZ#1954794",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954794"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25037",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25037"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25037",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25037"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T14:39:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: assertion failure and denial of service in dname_pkt_copy via an invalid packet"
},
{
"cve": "CVE-2019-25038",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954796"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An integer overflow in dnsc_load_local_data function may lead to a buffer overflow of the allocated buffer if the size can be controlled by an attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: integer overflow in a size calculation in dnscrypt/dnscrypt.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the integer overflow can lead to a buffer overflow in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25038"
},
{
"category": "external",
"summary": "RHBZ#1954796",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954796"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25038",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25038"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25038",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25038"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T14:39:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: integer overflow in a size calculation in dnscrypt/dnscrypt.c"
},
{
"cve": "CVE-2019-25039",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954797"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An integer overflow in ub_packed_rrset_key function may lead to a buffer overflow of the allocated buffer if the size can be controlled by an attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: integer overflow in a size calculation in respip/respip.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the integer overflow can lead to a buffer overflow in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25039"
},
{
"category": "external",
"summary": "RHBZ#1954797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954797"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25039",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25039"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25039",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25039"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T14:39:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: integer overflow in a size calculation in respip/respip.c"
},
{
"cve": "CVE-2019-25040",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954799"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An infinite loop in dname_pkt_copy function could be triggered by a remote attacker. The highest threat from this vulnerability is to service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: infinite loop via a compressed name in dname_pkt_copy",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "There is no available reproducer or proof of concept for this issue, nor it was ever proven the infinite loop can be triggered in practice. Indeed in the original report this issue was considered one that might not be triggered and for this reason its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25040"
},
{
"category": "external",
"summary": "RHBZ#1954799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954799"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25040",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25040"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25040",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25040"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T14:39:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: infinite loop via a compressed name in dname_pkt_copy"
},
{
"cve": "CVE-2019-25041",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954801"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. A reachable assertion in the dname_pkt_copy function can be triggered through compressed names. The highest threat from this vulnerability is to service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: assertion failure via a compressed name in dname_pkt_copy",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "According to the original report there are checks happening before the affected function that make this not exploitable. For these reasons its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25041"
},
{
"category": "external",
"summary": "RHBZ#1954801",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954801"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25041",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25041"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T14:39:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: assertion failure via a compressed name in dname_pkt_copy"
},
{
"cve": "CVE-2019-25042",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2021-04-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1954804"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in unbound. An out-of-bounds write in the rdata_copy function may be abused by a remote attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: out-of-bounds write via a compressed name in rdata_copy",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "According to the original report there are checks happening before the affected function that make this not exploitable. For these reasons its Impact is Moderate. Upstream has also disputed this CVE.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25042"
},
{
"category": "external",
"summary": "RHBZ#1954804",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1954804"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25042",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25042"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25042",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25042"
}
],
"release_date": "2019-12-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T14:39:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "unbound: out-of-bounds write via a compressed name in rdata_copy"
},
{
"acknowledgments": [
{
"names": [
"Mason Loring Bliss"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2020-28935",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2020-09-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1878761"
}
],
"notes": [
{
"category": "description",
"text": "A symbolic link traversal vulnerability was found in unbound in the way it writes its PID file while starting up. This flaw allows a local attacker with access to the unbound user to set up a link to another file, owned by root, and make unbound overwrite it during its next restart, destroying the original content. The highest threat from this vulnerability is integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: symbolic link traversal when writing PID file",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-28935"
},
{
"category": "external",
"summary": "RHBZ#1878761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1878761"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-28935",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28935"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-28935",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-28935"
}
],
"release_date": "2020-09-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-05-18T14:39:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1853"
},
{
"category": "workaround",
"details": "If SELinux is enabled in Enforcing mode (the default value in Red Hat Enterprise Linux 8), this kind of attack is prevented as unbound would be blocked from accessing the symbolic link file.",
"product_ids": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:python3-unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.src",
"AppStream-8.4.0.GA:unbound-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debuginfo-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-debugsource-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-devel-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-0:1.7.3-15.el8.x86_64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.aarch64",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.i686",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.ppc64le",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.s390x",
"AppStream-8.4.0.GA:unbound-libs-debuginfo-0:1.7.3-15.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "unbound: symbolic link traversal when writing PID file"
}
]
}
ghsa-q92f-7cwj-w4w5
Vulnerability from github
Published
2022-05-24 17:35
Modified
2022-10-12 19:00
Severity ?
VLAI Severity ?
Details
NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.
{
"affected": [],
"aliases": [
"CVE-2020-28935"
],
"database_specific": {
"cwe_ids": [
"CWE-59"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2020-12-07T22:15:00Z",
"severity": "MODERATE"
},
"details": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.",
"id": "GHSA-q92f-7cwj-w4w5",
"modified": "2022-10-12T19:00:39Z",
"published": "2022-05-24T17:35:44Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-28935"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00017.html"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202101-38"
},
{
"type": "WEB",
"url": "https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt"
},
{
"type": "WEB",
"url": "https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
suse-su-2022:0176-2
Vulnerability from csaf_suse
Published
2022-02-15 06:39
Modified
2022-02-15 06:39
Summary
Security update for unbound
Notes
Title of the patch
Security update for unbound
Description of the patch
This update for unbound fixes the following issues:
- CVE-2019-25031: Fixed configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack (bsc#1185382).
- CVE-2019-25032: Fixed integer overflow in the regional allocator via regional_alloc (bsc#1185383).
- CVE-2019-25033: Fixed integer overflow in the regional allocator via the ALIGN_UP macro (bsc#1185384).
- CVE-2019-25034: Fixed integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write (bsc#1185385).
- CVE-2019-25035: Fixed out-of-bounds write in sldns_bget_token_par (bsc#1185386).
- CVE-2019-25036: Fixed assertion failure and denial of service in synth_cname (bsc#1185387).
- CVE-2019-25037: Fixed assertion failure and denial of service in dname_pkt_copy via an invalid packet (bsc#1185388).
- CVE-2019-25038: Fixed integer overflow in a size calculation in dnscrypt/dnscrypt.c (bsc#1185389).
- CVE-2019-25039: Fixed integer overflow in a size calculation in respip/respip.c (bsc#1185390).
- CVE-2019-25040: Fixed infinite loop via a compressed name in dname_pkt_copy (bsc#1185391).
- CVE-2019-25041: Fixed assertion failure via a compressed name in dname_pkt_copy (bsc#1185392).
- CVE-2019-25042: Fixed out-of-bounds write via a compressed name in rdata_copy (bsc#1185393).
- CVE-2020-28935: Fixed symbolic link traversal when writing PID file (bsc#1179191).
Patchnames
SUSE-2022-176,SUSE-SLE-Product-RT-15-SP2-2022-176
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for unbound",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for unbound fixes the following issues:\n\n- CVE-2019-25031: Fixed configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack (bsc#1185382).\n- CVE-2019-25032: Fixed integer overflow in the regional allocator via regional_alloc (bsc#1185383).\n- CVE-2019-25033: Fixed integer overflow in the regional allocator via the ALIGN_UP macro (bsc#1185384).\n- CVE-2019-25034: Fixed integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write (bsc#1185385).\n- CVE-2019-25035: Fixed out-of-bounds write in sldns_bget_token_par (bsc#1185386).\n- CVE-2019-25036: Fixed assertion failure and denial of service in synth_cname (bsc#1185387).\n- CVE-2019-25037: Fixed assertion failure and denial of service in dname_pkt_copy via an invalid packet (bsc#1185388).\n- CVE-2019-25038: Fixed integer overflow in a size calculation in dnscrypt/dnscrypt.c (bsc#1185389).\n- CVE-2019-25039: Fixed integer overflow in a size calculation in respip/respip.c (bsc#1185390).\n- CVE-2019-25040: Fixed infinite loop via a compressed name in dname_pkt_copy (bsc#1185391).\n- CVE-2019-25041: Fixed assertion failure via a compressed name in dname_pkt_copy (bsc#1185392).\n- CVE-2019-25042: Fixed out-of-bounds write via a compressed name in rdata_copy (bsc#1185393).\n- CVE-2020-28935: Fixed symbolic link traversal when writing PID file (bsc#1179191).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-176,SUSE-SLE-Product-RT-15-SP2-2022-176",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_0176-2.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:0176-2",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20220176-2/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:0176-2",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-February/010225.html"
},
{
"category": "self",
"summary": "SUSE Bug 1076963",
"url": "https://bugzilla.suse.com/1076963"
},
{
"category": "self",
"summary": "SUSE Bug 1112009",
"url": "https://bugzilla.suse.com/1112009"
},
{
"category": "self",
"summary": "SUSE Bug 1112033",
"url": "https://bugzilla.suse.com/1112033"
},
{
"category": "self",
"summary": "SUSE Bug 1179191",
"url": "https://bugzilla.suse.com/1179191"
},
{
"category": "self",
"summary": "SUSE Bug 1185382",
"url": "https://bugzilla.suse.com/1185382"
},
{
"category": "self",
"summary": "SUSE Bug 1185383",
"url": "https://bugzilla.suse.com/1185383"
},
{
"category": "self",
"summary": "SUSE Bug 1185384",
"url": "https://bugzilla.suse.com/1185384"
},
{
"category": "self",
"summary": "SUSE Bug 1185385",
"url": "https://bugzilla.suse.com/1185385"
},
{
"category": "self",
"summary": "SUSE Bug 1185386",
"url": "https://bugzilla.suse.com/1185386"
},
{
"category": "self",
"summary": "SUSE Bug 1185387",
"url": "https://bugzilla.suse.com/1185387"
},
{
"category": "self",
"summary": "SUSE Bug 1185388",
"url": "https://bugzilla.suse.com/1185388"
},
{
"category": "self",
"summary": "SUSE Bug 1185389",
"url": "https://bugzilla.suse.com/1185389"
},
{
"category": "self",
"summary": "SUSE Bug 1185390",
"url": "https://bugzilla.suse.com/1185390"
},
{
"category": "self",
"summary": "SUSE Bug 1185391",
"url": "https://bugzilla.suse.com/1185391"
},
{
"category": "self",
"summary": "SUSE Bug 1185392",
"url": "https://bugzilla.suse.com/1185392"
},
{
"category": "self",
"summary": "SUSE Bug 1185393",
"url": "https://bugzilla.suse.com/1185393"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25031 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25032 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25033 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25034 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25034/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25035 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25036 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25036/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25037 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25038 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25038/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25039 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25040 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25040/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25041 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25041/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25042 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-28935 page",
"url": "https://www.suse.com/security/cve/CVE-2020-28935/"
}
],
"title": "Security update for unbound",
"tracking": {
"current_release_date": "2022-02-15T06:39:05Z",
"generator": {
"date": "2022-02-15T06:39:05Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:0176-2",
"initial_release_date": "2022-02-15T06:39:05Z",
"revision_history": [
{
"date": "2022-02-15T06:39:05Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-10.6.1.aarch64",
"product": {
"name": "libunbound-devel-mini-1.6.8-10.6.1.aarch64",
"product_id": "libunbound-devel-mini-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.aarch64",
"product": {
"name": "libunbound2-1.6.8-10.6.1.aarch64",
"product_id": "libunbound2-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-1.6.8-10.6.1.aarch64",
"product_id": "unbound-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64",
"product_id": "unbound-anchor-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64",
"product_id": "unbound-devel-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-python-1.6.8-10.6.1.aarch64",
"product_id": "unbound-python-1.6.8-10.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-10.6.1.i586",
"product": {
"name": "libunbound-devel-mini-1.6.8-10.6.1.i586",
"product_id": "libunbound-devel-mini-1.6.8-10.6.1.i586"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.i586",
"product": {
"name": "libunbound2-1.6.8-10.6.1.i586",
"product_id": "libunbound2-1.6.8-10.6.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.i586",
"product": {
"name": "unbound-1.6.8-10.6.1.i586",
"product_id": "unbound-1.6.8-10.6.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.i586",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.i586",
"product_id": "unbound-anchor-1.6.8-10.6.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.i586",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.i586",
"product_id": "unbound-devel-1.6.8-10.6.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.i586",
"product": {
"name": "unbound-python-1.6.8-10.6.1.i586",
"product_id": "unbound-python-1.6.8-10.6.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "unbound-munin-1.6.8-10.6.1.noarch",
"product": {
"name": "unbound-munin-1.6.8-10.6.1.noarch",
"product_id": "unbound-munin-1.6.8-10.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-10.6.1.ppc64le",
"product": {
"name": "libunbound-devel-mini-1.6.8-10.6.1.ppc64le",
"product_id": "libunbound-devel-mini-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.ppc64le",
"product": {
"name": "libunbound2-1.6.8-10.6.1.ppc64le",
"product_id": "libunbound2-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-anchor-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-devel-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-python-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-python-1.6.8-10.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-10.6.1.s390x",
"product": {
"name": "libunbound-devel-mini-1.6.8-10.6.1.s390x",
"product_id": "libunbound-devel-mini-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.s390x",
"product": {
"name": "libunbound2-1.6.8-10.6.1.s390x",
"product_id": "libunbound2-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-1.6.8-10.6.1.s390x",
"product_id": "unbound-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.s390x",
"product_id": "unbound-anchor-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.s390x",
"product_id": "unbound-devel-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-python-1.6.8-10.6.1.s390x",
"product_id": "unbound-python-1.6.8-10.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-10.6.1.x86_64",
"product": {
"name": "libunbound-devel-mini-1.6.8-10.6.1.x86_64",
"product_id": "libunbound-devel-mini-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.x86_64",
"product": {
"name": "libunbound2-1.6.8-10.6.1.x86_64",
"product_id": "libunbound2-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-1.6.8-10.6.1.x86_64",
"product_id": "unbound-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64",
"product_id": "unbound-anchor-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64",
"product_id": "unbound-devel-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-python-1.6.8-10.6.1.x86_64",
"product_id": "unbound-python-1.6.8-10.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Real Time 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Real Time 15 SP2",
"product_id": "SUSE Linux Enterprise Real Time 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_rt:15:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2",
"product_id": "SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Real Time 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2",
"product_id": "SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Real Time 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2",
"product_id": "SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Real Time 15 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-25031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25031"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session. NOTE: The vendor does not consider this a vulnerability of the Unbound software. create_unbound_ad_servers.sh is a contributed script from the community that facilitates automatic configuration creation. It is not part of the Unbound installation",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25031",
"url": "https://www.suse.com/security/cve/CVE-2019-25031"
},
{
"category": "external",
"summary": "SUSE Bug 1185382 for CVE-2019-25031",
"url": "https://bugzilla.suse.com/1185382"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2019-25031"
},
{
"cve": "CVE-2019-25032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25032"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in the regional allocator via regional_alloc. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25032",
"url": "https://www.suse.com/security/cve/CVE-2019-25032"
},
{
"category": "external",
"summary": "SUSE Bug 1185383 for CVE-2019-25032",
"url": "https://bugzilla.suse.com/1185383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2019-25032"
},
{
"cve": "CVE-2019-25033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25033"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in the regional allocator via the ALIGN_UP macro. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25033",
"url": "https://www.suse.com/security/cve/CVE-2019-25033"
},
{
"category": "external",
"summary": "SUSE Bug 1185384 for CVE-2019-25033",
"url": "https://bugzilla.suse.com/1185384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2019-25033"
},
{
"cve": "CVE-2019-25034",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25034"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25034",
"url": "https://www.suse.com/security/cve/CVE-2019-25034"
},
{
"category": "external",
"summary": "SUSE Bug 1185385 for CVE-2019-25034",
"url": "https://bugzilla.suse.com/1185385"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "important"
}
],
"title": "CVE-2019-25034"
},
{
"cve": "CVE-2019-25035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25035"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token_par. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25035",
"url": "https://www.suse.com/security/cve/CVE-2019-25035"
},
{
"category": "external",
"summary": "SUSE Bug 1185386 for CVE-2019-25035",
"url": "https://bugzilla.suse.com/1185386"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2019-25035"
},
{
"cve": "CVE-2019-25036",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25036"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure and denial of service in synth_cname. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25036",
"url": "https://www.suse.com/security/cve/CVE-2019-25036"
},
{
"category": "external",
"summary": "SUSE Bug 1185387 for CVE-2019-25036",
"url": "https://bugzilla.suse.com/1185387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2019-25036"
},
{
"cve": "CVE-2019-25037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25037"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an invalid packet. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25037",
"url": "https://www.suse.com/security/cve/CVE-2019-25037"
},
{
"category": "external",
"summary": "SUSE Bug 1185388 for CVE-2019-25037",
"url": "https://bugzilla.suse.com/1185388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2019-25037"
},
{
"cve": "CVE-2019-25038",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25038"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in a size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25038",
"url": "https://www.suse.com/security/cve/CVE-2019-25038"
},
{
"category": "external",
"summary": "SUSE Bug 1185389 for CVE-2019-25038",
"url": "https://bugzilla.suse.com/1185389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2019-25038"
},
{
"cve": "CVE-2019-25039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25039"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25039",
"url": "https://www.suse.com/security/cve/CVE-2019-25039"
},
{
"category": "external",
"summary": "SUSE Bug 1185390 for CVE-2019-25039",
"url": "https://bugzilla.suse.com/1185390"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2019-25039"
},
{
"cve": "CVE-2019-25040",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25040"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25040",
"url": "https://www.suse.com/security/cve/CVE-2019-25040"
},
{
"category": "external",
"summary": "SUSE Bug 1185391 for CVE-2019-25040",
"url": "https://bugzilla.suse.com/1185391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2019-25040"
},
{
"cve": "CVE-2019-25041",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25041"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25041",
"url": "https://www.suse.com/security/cve/CVE-2019-25041"
},
{
"category": "external",
"summary": "SUSE Bug 1185392 for CVE-2019-25041",
"url": "https://bugzilla.suse.com/1185392"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2019-25041"
},
{
"cve": "CVE-2019-25042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25042"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an out-of-bounds write via a compressed name in rdata_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25042",
"url": "https://www.suse.com/security/cve/CVE-2019-25042"
},
{
"category": "external",
"summary": "SUSE Bug 1185393 for CVE-2019-25042",
"url": "https://bugzilla.suse.com/1185393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2019-25042"
},
{
"cve": "CVE-2020-28935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-28935"
}
],
"notes": [
{
"category": "general",
"text": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-28935",
"url": "https://www.suse.com/security/cve/CVE-2020-28935"
},
{
"category": "external",
"summary": "SUSE Bug 1173619 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1173619"
},
{
"category": "external",
"summary": "SUSE Bug 1179191 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1179191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Real Time 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Real Time 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-15T06:39:05Z",
"details": "moderate"
}
],
"title": "CVE-2020-28935"
}
]
}
suse-su-2022:0301-1
Vulnerability from csaf_suse
Published
2022-02-02 09:05
Modified
2022-02-02 09:05
Summary
Security update for unbound
Notes
Title of the patch
Security update for unbound
Description of the patch
This update for unbound fixes the following issues:
- CVE-2019-25031: Fixed configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack (bsc#1185382).
- CVE-2019-25032: Fixed integer overflow in the regional allocator via regional_alloc (bsc#1185383).
- CVE-2019-25033: Fixed integer overflow in the regional allocator via the ALIGN_UP macro (bsc#1185384).
- CVE-2019-25034: Fixed integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write (bsc#1185385).
- CVE-2019-25035: Fixed out-of-bounds write in sldns_bget_token_par (bsc#1185386).
- CVE-2019-25036: Fixed assertion failure and denial of service in synth_cname (bsc#1185387).
- CVE-2019-25037: Fixed assertion failure and denial of service in dname_pkt_copy via an invalid packet (bsc#1185388).
- CVE-2019-25038: Fixed integer overflow in a size calculation in dnscrypt/dnscrypt.c (bsc#1185389).
- CVE-2019-25039: Fixed integer overflow in a size calculation in respip/respip.c (bsc#1185390).
- CVE-2019-25040: Fixed infinite loop via a compressed name in dname_pkt_copy (bsc#1185391).
- CVE-2019-25041: Fixed assertion failure via a compressed name in dname_pkt_copy (bsc#1185392).
- CVE-2019-25042: Fixed out-of-bounds write via a compressed name in rdata_copy (bsc#1185393).
- CVE-2020-28935: Fixed symbolic link traversal when writing PID file (bsc#1179191).
Patchnames
SUSE-2022-301,SUSE-SLE-Product-HPC-15-2022-301,SUSE-SLE-Product-SLES-15-2022-301,SUSE-SLE-Product-SLES_SAP-15-2022-301
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for unbound",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for unbound fixes the following issues:\n\n- CVE-2019-25031: Fixed configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack (bsc#1185382).\n- CVE-2019-25032: Fixed integer overflow in the regional allocator via regional_alloc (bsc#1185383).\n- CVE-2019-25033: Fixed integer overflow in the regional allocator via the ALIGN_UP macro (bsc#1185384).\n- CVE-2019-25034: Fixed integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write (bsc#1185385).\n- CVE-2019-25035: Fixed out-of-bounds write in sldns_bget_token_par (bsc#1185386).\n- CVE-2019-25036: Fixed assertion failure and denial of service in synth_cname (bsc#1185387).\n- CVE-2019-25037: Fixed assertion failure and denial of service in dname_pkt_copy via an invalid packet (bsc#1185388).\n- CVE-2019-25038: Fixed integer overflow in a size calculation in dnscrypt/dnscrypt.c (bsc#1185389).\n- CVE-2019-25039: Fixed integer overflow in a size calculation in respip/respip.c (bsc#1185390).\n- CVE-2019-25040: Fixed infinite loop via a compressed name in dname_pkt_copy (bsc#1185391).\n- CVE-2019-25041: Fixed assertion failure via a compressed name in dname_pkt_copy (bsc#1185392).\n- CVE-2019-25042: Fixed out-of-bounds write via a compressed name in rdata_copy (bsc#1185393).\n- CVE-2020-28935: Fixed symbolic link traversal when writing PID file (bsc#1179191).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-301,SUSE-SLE-Product-HPC-15-2022-301,SUSE-SLE-Product-SLES-15-2022-301,SUSE-SLE-Product-SLES_SAP-15-2022-301",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_0301-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:0301-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20220301-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:0301-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2022-February/021588.html"
},
{
"category": "self",
"summary": "SUSE Bug 1076963",
"url": "https://bugzilla.suse.com/1076963"
},
{
"category": "self",
"summary": "SUSE Bug 1112009",
"url": "https://bugzilla.suse.com/1112009"
},
{
"category": "self",
"summary": "SUSE Bug 1112033",
"url": "https://bugzilla.suse.com/1112033"
},
{
"category": "self",
"summary": "SUSE Bug 1179191",
"url": "https://bugzilla.suse.com/1179191"
},
{
"category": "self",
"summary": "SUSE Bug 1185382",
"url": "https://bugzilla.suse.com/1185382"
},
{
"category": "self",
"summary": "SUSE Bug 1185383",
"url": "https://bugzilla.suse.com/1185383"
},
{
"category": "self",
"summary": "SUSE Bug 1185384",
"url": "https://bugzilla.suse.com/1185384"
},
{
"category": "self",
"summary": "SUSE Bug 1185385",
"url": "https://bugzilla.suse.com/1185385"
},
{
"category": "self",
"summary": "SUSE Bug 1185386",
"url": "https://bugzilla.suse.com/1185386"
},
{
"category": "self",
"summary": "SUSE Bug 1185387",
"url": "https://bugzilla.suse.com/1185387"
},
{
"category": "self",
"summary": "SUSE Bug 1185388",
"url": "https://bugzilla.suse.com/1185388"
},
{
"category": "self",
"summary": "SUSE Bug 1185389",
"url": "https://bugzilla.suse.com/1185389"
},
{
"category": "self",
"summary": "SUSE Bug 1185390",
"url": "https://bugzilla.suse.com/1185390"
},
{
"category": "self",
"summary": "SUSE Bug 1185391",
"url": "https://bugzilla.suse.com/1185391"
},
{
"category": "self",
"summary": "SUSE Bug 1185392",
"url": "https://bugzilla.suse.com/1185392"
},
{
"category": "self",
"summary": "SUSE Bug 1185393",
"url": "https://bugzilla.suse.com/1185393"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25031 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25032 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25033 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25034 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25034/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25035 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25036 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25036/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25037 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25038 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25038/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25039 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25040 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25040/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25041 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25041/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25042 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-28935 page",
"url": "https://www.suse.com/security/cve/CVE-2020-28935/"
}
],
"title": "Security update for unbound",
"tracking": {
"current_release_date": "2022-02-02T09:05:06Z",
"generator": {
"date": "2022-02-02T09:05:06Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:0301-1",
"initial_release_date": "2022-02-02T09:05:06Z",
"revision_history": [
{
"date": "2022-02-02T09:05:06Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-3.9.1.aarch64",
"product": {
"name": "libunbound-devel-mini-1.6.8-3.9.1.aarch64",
"product_id": "libunbound-devel-mini-1.6.8-3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-3.9.1.aarch64",
"product": {
"name": "libunbound2-1.6.8-3.9.1.aarch64",
"product_id": "libunbound2-1.6.8-3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-3.9.1.aarch64",
"product": {
"name": "unbound-1.6.8-3.9.1.aarch64",
"product_id": "unbound-1.6.8-3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-3.9.1.aarch64",
"product": {
"name": "unbound-anchor-1.6.8-3.9.1.aarch64",
"product_id": "unbound-anchor-1.6.8-3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-3.9.1.aarch64",
"product": {
"name": "unbound-devel-1.6.8-3.9.1.aarch64",
"product_id": "unbound-devel-1.6.8-3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-3.9.1.aarch64",
"product": {
"name": "unbound-python-1.6.8-3.9.1.aarch64",
"product_id": "unbound-python-1.6.8-3.9.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-3.9.1.i586",
"product": {
"name": "libunbound-devel-mini-1.6.8-3.9.1.i586",
"product_id": "libunbound-devel-mini-1.6.8-3.9.1.i586"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-3.9.1.i586",
"product": {
"name": "libunbound2-1.6.8-3.9.1.i586",
"product_id": "libunbound2-1.6.8-3.9.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-3.9.1.i586",
"product": {
"name": "unbound-1.6.8-3.9.1.i586",
"product_id": "unbound-1.6.8-3.9.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-3.9.1.i586",
"product": {
"name": "unbound-anchor-1.6.8-3.9.1.i586",
"product_id": "unbound-anchor-1.6.8-3.9.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-3.9.1.i586",
"product": {
"name": "unbound-devel-1.6.8-3.9.1.i586",
"product_id": "unbound-devel-1.6.8-3.9.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-3.9.1.i586",
"product": {
"name": "unbound-python-1.6.8-3.9.1.i586",
"product_id": "unbound-python-1.6.8-3.9.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "unbound-munin-1.6.8-3.9.1.noarch",
"product": {
"name": "unbound-munin-1.6.8-3.9.1.noarch",
"product_id": "unbound-munin-1.6.8-3.9.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-3.9.1.ppc64le",
"product": {
"name": "libunbound-devel-mini-1.6.8-3.9.1.ppc64le",
"product_id": "libunbound-devel-mini-1.6.8-3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-3.9.1.ppc64le",
"product": {
"name": "libunbound2-1.6.8-3.9.1.ppc64le",
"product_id": "libunbound2-1.6.8-3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-3.9.1.ppc64le",
"product": {
"name": "unbound-1.6.8-3.9.1.ppc64le",
"product_id": "unbound-1.6.8-3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-3.9.1.ppc64le",
"product": {
"name": "unbound-anchor-1.6.8-3.9.1.ppc64le",
"product_id": "unbound-anchor-1.6.8-3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-3.9.1.ppc64le",
"product": {
"name": "unbound-devel-1.6.8-3.9.1.ppc64le",
"product_id": "unbound-devel-1.6.8-3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-3.9.1.ppc64le",
"product": {
"name": "unbound-python-1.6.8-3.9.1.ppc64le",
"product_id": "unbound-python-1.6.8-3.9.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-3.9.1.s390x",
"product": {
"name": "libunbound-devel-mini-1.6.8-3.9.1.s390x",
"product_id": "libunbound-devel-mini-1.6.8-3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-3.9.1.s390x",
"product": {
"name": "libunbound2-1.6.8-3.9.1.s390x",
"product_id": "libunbound2-1.6.8-3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-3.9.1.s390x",
"product": {
"name": "unbound-1.6.8-3.9.1.s390x",
"product_id": "unbound-1.6.8-3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-3.9.1.s390x",
"product": {
"name": "unbound-anchor-1.6.8-3.9.1.s390x",
"product_id": "unbound-anchor-1.6.8-3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-3.9.1.s390x",
"product": {
"name": "unbound-devel-1.6.8-3.9.1.s390x",
"product_id": "unbound-devel-1.6.8-3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-3.9.1.s390x",
"product": {
"name": "unbound-python-1.6.8-3.9.1.s390x",
"product_id": "unbound-python-1.6.8-3.9.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-3.9.1.x86_64",
"product": {
"name": "libunbound-devel-mini-1.6.8-3.9.1.x86_64",
"product_id": "libunbound-devel-mini-1.6.8-3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-3.9.1.x86_64",
"product": {
"name": "libunbound2-1.6.8-3.9.1.x86_64",
"product_id": "libunbound2-1.6.8-3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-3.9.1.x86_64",
"product": {
"name": "unbound-1.6.8-3.9.1.x86_64",
"product_id": "unbound-1.6.8-3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-3.9.1.x86_64",
"product": {
"name": "unbound-anchor-1.6.8-3.9.1.x86_64",
"product_id": "unbound-anchor-1.6.8-3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-3.9.1.x86_64",
"product": {
"name": "unbound-devel-1.6.8-3.9.1.x86_64",
"product_id": "unbound-devel-1.6.8-3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-3.9.1.x86_64",
"product": {
"name": "unbound-python-1.6.8-3.9.1.x86_64",
"product_id": "unbound-python-1.6.8-3.9.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-3.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-3.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-3.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-3.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-3.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-3.9.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-3.9.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-3.9.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le"
},
"product_reference": "libunbound2-1.6.8-3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-3.9.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x"
},
"product_reference": "libunbound2-1.6.8-3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-3.9.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-3.9.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le"
},
"product_reference": "unbound-anchor-1.6.8-3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-3.9.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x"
},
"product_reference": "unbound-anchor-1.6.8-3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-3.9.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-3.9.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le"
},
"product_reference": "unbound-devel-1.6.8-3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-3.9.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x"
},
"product_reference": "unbound-devel-1.6.8-3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-3.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le"
},
"product_reference": "libunbound2-1.6.8-3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-3.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le"
},
"product_reference": "unbound-anchor-1.6.8-3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-3.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le"
},
"product_reference": "unbound-devel-1.6.8-3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-3.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-25031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25031"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session. NOTE: The vendor does not consider this a vulnerability of the Unbound software. create_unbound_ad_servers.sh is a contributed script from the community that facilitates automatic configuration creation. It is not part of the Unbound installation",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25031",
"url": "https://www.suse.com/security/cve/CVE-2019-25031"
},
{
"category": "external",
"summary": "SUSE Bug 1185382 for CVE-2019-25031",
"url": "https://bugzilla.suse.com/1185382"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2019-25031"
},
{
"cve": "CVE-2019-25032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25032"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in the regional allocator via regional_alloc. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25032",
"url": "https://www.suse.com/security/cve/CVE-2019-25032"
},
{
"category": "external",
"summary": "SUSE Bug 1185383 for CVE-2019-25032",
"url": "https://bugzilla.suse.com/1185383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2019-25032"
},
{
"cve": "CVE-2019-25033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25033"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in the regional allocator via the ALIGN_UP macro. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25033",
"url": "https://www.suse.com/security/cve/CVE-2019-25033"
},
{
"category": "external",
"summary": "SUSE Bug 1185384 for CVE-2019-25033",
"url": "https://bugzilla.suse.com/1185384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2019-25033"
},
{
"cve": "CVE-2019-25034",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25034"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25034",
"url": "https://www.suse.com/security/cve/CVE-2019-25034"
},
{
"category": "external",
"summary": "SUSE Bug 1185385 for CVE-2019-25034",
"url": "https://bugzilla.suse.com/1185385"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "important"
}
],
"title": "CVE-2019-25034"
},
{
"cve": "CVE-2019-25035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25035"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token_par. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25035",
"url": "https://www.suse.com/security/cve/CVE-2019-25035"
},
{
"category": "external",
"summary": "SUSE Bug 1185386 for CVE-2019-25035",
"url": "https://bugzilla.suse.com/1185386"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2019-25035"
},
{
"cve": "CVE-2019-25036",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25036"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure and denial of service in synth_cname. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25036",
"url": "https://www.suse.com/security/cve/CVE-2019-25036"
},
{
"category": "external",
"summary": "SUSE Bug 1185387 for CVE-2019-25036",
"url": "https://bugzilla.suse.com/1185387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2019-25036"
},
{
"cve": "CVE-2019-25037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25037"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an invalid packet. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25037",
"url": "https://www.suse.com/security/cve/CVE-2019-25037"
},
{
"category": "external",
"summary": "SUSE Bug 1185388 for CVE-2019-25037",
"url": "https://bugzilla.suse.com/1185388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2019-25037"
},
{
"cve": "CVE-2019-25038",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25038"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in a size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25038",
"url": "https://www.suse.com/security/cve/CVE-2019-25038"
},
{
"category": "external",
"summary": "SUSE Bug 1185389 for CVE-2019-25038",
"url": "https://bugzilla.suse.com/1185389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2019-25038"
},
{
"cve": "CVE-2019-25039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25039"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25039",
"url": "https://www.suse.com/security/cve/CVE-2019-25039"
},
{
"category": "external",
"summary": "SUSE Bug 1185390 for CVE-2019-25039",
"url": "https://bugzilla.suse.com/1185390"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2019-25039"
},
{
"cve": "CVE-2019-25040",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25040"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25040",
"url": "https://www.suse.com/security/cve/CVE-2019-25040"
},
{
"category": "external",
"summary": "SUSE Bug 1185391 for CVE-2019-25040",
"url": "https://bugzilla.suse.com/1185391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2019-25040"
},
{
"cve": "CVE-2019-25041",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25041"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25041",
"url": "https://www.suse.com/security/cve/CVE-2019-25041"
},
{
"category": "external",
"summary": "SUSE Bug 1185392 for CVE-2019-25041",
"url": "https://bugzilla.suse.com/1185392"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2019-25041"
},
{
"cve": "CVE-2019-25042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25042"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an out-of-bounds write via a compressed name in rdata_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25042",
"url": "https://www.suse.com/security/cve/CVE-2019-25042"
},
{
"category": "external",
"summary": "SUSE Bug 1185393 for CVE-2019-25042",
"url": "https://bugzilla.suse.com/1185393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2019-25042"
},
{
"cve": "CVE-2020-28935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-28935"
}
],
"notes": [
{
"category": "general",
"text": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-28935",
"url": "https://www.suse.com/security/cve/CVE-2020-28935"
},
{
"category": "external",
"summary": "SUSE Bug 1173619 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1173619"
},
{
"category": "external",
"summary": "SUSE Bug 1179191 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1179191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:unbound-devel-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:libunbound2-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-anchor-1.6.8-3.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:unbound-devel-1.6.8-3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-02-02T09:05:06Z",
"details": "moderate"
}
],
"title": "CVE-2020-28935"
}
]
}
suse-su-2022:0176-1
Vulnerability from csaf_suse
Published
2022-01-25 13:13
Modified
2022-01-25 13:13
Summary
Security update for unbound
Notes
Title of the patch
Security update for unbound
Description of the patch
This update for unbound fixes the following issues:
- CVE-2019-25031: Fixed configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack (bsc#1185382).
- CVE-2019-25032: Fixed integer overflow in the regional allocator via regional_alloc (bsc#1185383).
- CVE-2019-25033: Fixed integer overflow in the regional allocator via the ALIGN_UP macro (bsc#1185384).
- CVE-2019-25034: Fixed integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write (bsc#1185385).
- CVE-2019-25035: Fixed out-of-bounds write in sldns_bget_token_par (bsc#1185386).
- CVE-2019-25036: Fixed assertion failure and denial of service in synth_cname (bsc#1185387).
- CVE-2019-25037: Fixed assertion failure and denial of service in dname_pkt_copy via an invalid packet (bsc#1185388).
- CVE-2019-25038: Fixed integer overflow in a size calculation in dnscrypt/dnscrypt.c (bsc#1185389).
- CVE-2019-25039: Fixed integer overflow in a size calculation in respip/respip.c (bsc#1185390).
- CVE-2019-25040: Fixed infinite loop via a compressed name in dname_pkt_copy (bsc#1185391).
- CVE-2019-25041: Fixed assertion failure via a compressed name in dname_pkt_copy (bsc#1185392).
- CVE-2019-25042: Fixed out-of-bounds write via a compressed name in rdata_copy (bsc#1185393).
- CVE-2020-28935: Fixed symbolic link traversal when writing PID file (bsc#1179191).
Patchnames
SUSE-2022-176,SUSE-SLE-Module-Basesystem-15-SP3-2022-176,SUSE-SLE-Module-Basesystem-15-SP4-2022-176,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-176,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-176,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-176,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-176,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-176,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-176,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-176,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-176,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-176,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-176,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-176,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-176,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-176,SUSE-Storage-6-2022-176,SUSE-Storage-7-2022-176
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for unbound",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for unbound fixes the following issues:\n\n- CVE-2019-25031: Fixed configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack (bsc#1185382).\n- CVE-2019-25032: Fixed integer overflow in the regional allocator via regional_alloc (bsc#1185383).\n- CVE-2019-25033: Fixed integer overflow in the regional allocator via the ALIGN_UP macro (bsc#1185384).\n- CVE-2019-25034: Fixed integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write (bsc#1185385).\n- CVE-2019-25035: Fixed out-of-bounds write in sldns_bget_token_par (bsc#1185386).\n- CVE-2019-25036: Fixed assertion failure and denial of service in synth_cname (bsc#1185387).\n- CVE-2019-25037: Fixed assertion failure and denial of service in dname_pkt_copy via an invalid packet (bsc#1185388).\n- CVE-2019-25038: Fixed integer overflow in a size calculation in dnscrypt/dnscrypt.c (bsc#1185389).\n- CVE-2019-25039: Fixed integer overflow in a size calculation in respip/respip.c (bsc#1185390).\n- CVE-2019-25040: Fixed infinite loop via a compressed name in dname_pkt_copy (bsc#1185391).\n- CVE-2019-25041: Fixed assertion failure via a compressed name in dname_pkt_copy (bsc#1185392).\n- CVE-2019-25042: Fixed out-of-bounds write via a compressed name in rdata_copy (bsc#1185393).\n- CVE-2020-28935: Fixed symbolic link traversal when writing PID file (bsc#1179191).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-176,SUSE-SLE-Module-Basesystem-15-SP3-2022-176,SUSE-SLE-Module-Basesystem-15-SP4-2022-176,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-176,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-176,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-176,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-176,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-176,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-176,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-176,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-176,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-176,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-176,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-176,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-176,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-176,SUSE-Storage-6-2022-176,SUSE-Storage-7-2022-176",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_0176-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:0176-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20220176-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:0176-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-January/010064.html"
},
{
"category": "self",
"summary": "SUSE Bug 1076963",
"url": "https://bugzilla.suse.com/1076963"
},
{
"category": "self",
"summary": "SUSE Bug 1112009",
"url": "https://bugzilla.suse.com/1112009"
},
{
"category": "self",
"summary": "SUSE Bug 1112033",
"url": "https://bugzilla.suse.com/1112033"
},
{
"category": "self",
"summary": "SUSE Bug 1179191",
"url": "https://bugzilla.suse.com/1179191"
},
{
"category": "self",
"summary": "SUSE Bug 1185382",
"url": "https://bugzilla.suse.com/1185382"
},
{
"category": "self",
"summary": "SUSE Bug 1185383",
"url": "https://bugzilla.suse.com/1185383"
},
{
"category": "self",
"summary": "SUSE Bug 1185384",
"url": "https://bugzilla.suse.com/1185384"
},
{
"category": "self",
"summary": "SUSE Bug 1185385",
"url": "https://bugzilla.suse.com/1185385"
},
{
"category": "self",
"summary": "SUSE Bug 1185386",
"url": "https://bugzilla.suse.com/1185386"
},
{
"category": "self",
"summary": "SUSE Bug 1185387",
"url": "https://bugzilla.suse.com/1185387"
},
{
"category": "self",
"summary": "SUSE Bug 1185388",
"url": "https://bugzilla.suse.com/1185388"
},
{
"category": "self",
"summary": "SUSE Bug 1185389",
"url": "https://bugzilla.suse.com/1185389"
},
{
"category": "self",
"summary": "SUSE Bug 1185390",
"url": "https://bugzilla.suse.com/1185390"
},
{
"category": "self",
"summary": "SUSE Bug 1185391",
"url": "https://bugzilla.suse.com/1185391"
},
{
"category": "self",
"summary": "SUSE Bug 1185392",
"url": "https://bugzilla.suse.com/1185392"
},
{
"category": "self",
"summary": "SUSE Bug 1185393",
"url": "https://bugzilla.suse.com/1185393"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25031 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25031/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25032 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25033 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25034 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25034/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25035 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25035/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25036 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25036/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25037 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25038 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25038/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25039 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25040 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25040/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25041 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25041/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25042 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-28935 page",
"url": "https://www.suse.com/security/cve/CVE-2020-28935/"
}
],
"title": "Security update for unbound",
"tracking": {
"current_release_date": "2022-01-25T13:13:57Z",
"generator": {
"date": "2022-01-25T13:13:57Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:0176-1",
"initial_release_date": "2022-01-25T13:13:57Z",
"revision_history": [
{
"date": "2022-01-25T13:13:57Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-10.6.1.aarch64",
"product": {
"name": "libunbound-devel-mini-1.6.8-10.6.1.aarch64",
"product_id": "libunbound-devel-mini-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.aarch64",
"product": {
"name": "libunbound2-1.6.8-10.6.1.aarch64",
"product_id": "libunbound2-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-1.6.8-10.6.1.aarch64",
"product_id": "unbound-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64",
"product_id": "unbound-anchor-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64",
"product_id": "unbound-devel-1.6.8-10.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.aarch64",
"product": {
"name": "unbound-python-1.6.8-10.6.1.aarch64",
"product_id": "unbound-python-1.6.8-10.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-10.6.1.i586",
"product": {
"name": "libunbound-devel-mini-1.6.8-10.6.1.i586",
"product_id": "libunbound-devel-mini-1.6.8-10.6.1.i586"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.i586",
"product": {
"name": "libunbound2-1.6.8-10.6.1.i586",
"product_id": "libunbound2-1.6.8-10.6.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.i586",
"product": {
"name": "unbound-1.6.8-10.6.1.i586",
"product_id": "unbound-1.6.8-10.6.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.i586",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.i586",
"product_id": "unbound-anchor-1.6.8-10.6.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.i586",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.i586",
"product_id": "unbound-devel-1.6.8-10.6.1.i586"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.i586",
"product": {
"name": "unbound-python-1.6.8-10.6.1.i586",
"product_id": "unbound-python-1.6.8-10.6.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "unbound-munin-1.6.8-10.6.1.noarch",
"product": {
"name": "unbound-munin-1.6.8-10.6.1.noarch",
"product_id": "unbound-munin-1.6.8-10.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-10.6.1.ppc64le",
"product": {
"name": "libunbound-devel-mini-1.6.8-10.6.1.ppc64le",
"product_id": "libunbound-devel-mini-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.ppc64le",
"product": {
"name": "libunbound2-1.6.8-10.6.1.ppc64le",
"product_id": "libunbound2-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-anchor-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-devel-1.6.8-10.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.ppc64le",
"product": {
"name": "unbound-python-1.6.8-10.6.1.ppc64le",
"product_id": "unbound-python-1.6.8-10.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-10.6.1.s390x",
"product": {
"name": "libunbound-devel-mini-1.6.8-10.6.1.s390x",
"product_id": "libunbound-devel-mini-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.s390x",
"product": {
"name": "libunbound2-1.6.8-10.6.1.s390x",
"product_id": "libunbound2-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-1.6.8-10.6.1.s390x",
"product_id": "unbound-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.s390x",
"product_id": "unbound-anchor-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.s390x",
"product_id": "unbound-devel-1.6.8-10.6.1.s390x"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.s390x",
"product": {
"name": "unbound-python-1.6.8-10.6.1.s390x",
"product_id": "unbound-python-1.6.8-10.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libunbound-devel-mini-1.6.8-10.6.1.x86_64",
"product": {
"name": "libunbound-devel-mini-1.6.8-10.6.1.x86_64",
"product_id": "libunbound-devel-mini-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "libunbound2-1.6.8-10.6.1.x86_64",
"product": {
"name": "libunbound2-1.6.8-10.6.1.x86_64",
"product_id": "libunbound2-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-1.6.8-10.6.1.x86_64",
"product_id": "unbound-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-anchor-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64",
"product_id": "unbound-anchor-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-devel-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64",
"product_id": "unbound-devel-1.6.8-10.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "unbound-python-1.6.8-10.6.1.x86_64",
"product": {
"name": "unbound-python-1.6.8-10.6.1.x86_64",
"product_id": "unbound-python-1.6.8-10.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_bcl:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_bcl:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Proxy 4.1",
"product": {
"name": "SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy:4.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Retail Branch Server 4.1",
"product": {
"name": "SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server 4.1",
"product": {
"name": "SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:4.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 6",
"product": {
"name": "SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:6"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7",
"product": {
"name": "SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le"
},
"product_reference": "libunbound2-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x"
},
"product_reference": "libunbound2-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le"
},
"product_reference": "libunbound2-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x"
},
"product_reference": "libunbound2-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le"
},
"product_reference": "libunbound2-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x"
},
"product_reference": "libunbound2-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le"
},
"product_reference": "libunbound2-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le"
},
"product_reference": "libunbound2-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Manager Proxy 4.1",
"product_id": "SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
"product_id": "SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.ppc64le as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le"
},
"product_reference": "libunbound2-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.s390x as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x"
},
"product_reference": "libunbound2-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.ppc64le as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.s390x as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.ppc64le as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.s390x as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Manager Server 4.1",
"product_id": "SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.aarch64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libunbound2-1.6.8-10.6.1.x86_64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64"
},
"product_reference": "libunbound2-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.aarch64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-anchor-1.6.8-10.6.1.x86_64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-anchor-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.aarch64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "unbound-devel-1.6.8-10.6.1.x86_64 as component of SUSE Enterprise Storage 7",
"product_id": "SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64"
},
"product_reference": "unbound-devel-1.6.8-10.6.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-25031",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25031"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session. NOTE: The vendor does not consider this a vulnerability of the Unbound software. create_unbound_ad_servers.sh is a contributed script from the community that facilitates automatic configuration creation. It is not part of the Unbound installation",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25031",
"url": "https://www.suse.com/security/cve/CVE-2019-25031"
},
{
"category": "external",
"summary": "SUSE Bug 1185382 for CVE-2019-25031",
"url": "https://bugzilla.suse.com/1185382"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2019-25031"
},
{
"cve": "CVE-2019-25032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25032"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in the regional allocator via regional_alloc. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25032",
"url": "https://www.suse.com/security/cve/CVE-2019-25032"
},
{
"category": "external",
"summary": "SUSE Bug 1185383 for CVE-2019-25032",
"url": "https://bugzilla.suse.com/1185383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2019-25032"
},
{
"cve": "CVE-2019-25033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25033"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in the regional allocator via the ALIGN_UP macro. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25033",
"url": "https://www.suse.com/security/cve/CVE-2019-25033"
},
{
"category": "external",
"summary": "SUSE Bug 1185384 for CVE-2019-25033",
"url": "https://bugzilla.suse.com/1185384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2019-25033"
},
{
"cve": "CVE-2019-25034",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25034"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25034",
"url": "https://www.suse.com/security/cve/CVE-2019-25034"
},
{
"category": "external",
"summary": "SUSE Bug 1185385 for CVE-2019-25034",
"url": "https://bugzilla.suse.com/1185385"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "important"
}
],
"title": "CVE-2019-25034"
},
{
"cve": "CVE-2019-25035",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25035"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token_par. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25035",
"url": "https://www.suse.com/security/cve/CVE-2019-25035"
},
{
"category": "external",
"summary": "SUSE Bug 1185386 for CVE-2019-25035",
"url": "https://bugzilla.suse.com/1185386"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2019-25035"
},
{
"cve": "CVE-2019-25036",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25036"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure and denial of service in synth_cname. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25036",
"url": "https://www.suse.com/security/cve/CVE-2019-25036"
},
{
"category": "external",
"summary": "SUSE Bug 1185387 for CVE-2019-25036",
"url": "https://bugzilla.suse.com/1185387"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2019-25036"
},
{
"cve": "CVE-2019-25037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25037"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an invalid packet. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25037",
"url": "https://www.suse.com/security/cve/CVE-2019-25037"
},
{
"category": "external",
"summary": "SUSE Bug 1185388 for CVE-2019-25037",
"url": "https://bugzilla.suse.com/1185388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2019-25037"
},
{
"cve": "CVE-2019-25038",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25038"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in a size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25038",
"url": "https://www.suse.com/security/cve/CVE-2019-25038"
},
{
"category": "external",
"summary": "SUSE Bug 1185389 for CVE-2019-25038",
"url": "https://bugzilla.suse.com/1185389"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2019-25038"
},
{
"cve": "CVE-2019-25039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25039"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25039",
"url": "https://www.suse.com/security/cve/CVE-2019-25039"
},
{
"category": "external",
"summary": "SUSE Bug 1185390 for CVE-2019-25039",
"url": "https://bugzilla.suse.com/1185390"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2019-25039"
},
{
"cve": "CVE-2019-25040",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25040"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25040",
"url": "https://www.suse.com/security/cve/CVE-2019-25040"
},
{
"category": "external",
"summary": "SUSE Bug 1185391 for CVE-2019-25040",
"url": "https://bugzilla.suse.com/1185391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2019-25040"
},
{
"cve": "CVE-2019-25041",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25041"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25041",
"url": "https://www.suse.com/security/cve/CVE-2019-25041"
},
{
"category": "external",
"summary": "SUSE Bug 1185392 for CVE-2019-25041",
"url": "https://bugzilla.suse.com/1185392"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2019-25041"
},
{
"cve": "CVE-2019-25042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25042"
}
],
"notes": [
{
"category": "general",
"text": "Unbound before 1.9.5 allows an out-of-bounds write via a compressed name in rdata_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25042",
"url": "https://www.suse.com/security/cve/CVE-2019-25042"
},
{
"category": "external",
"summary": "SUSE Bug 1185393 for CVE-2019-25042",
"url": "https://bugzilla.suse.com/1185393"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2019-25042"
},
{
"cve": "CVE-2020-28935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-28935"
}
],
"notes": [
{
"category": "general",
"text": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-28935",
"url": "https://www.suse.com/security/cve/CVE-2020-28935"
},
{
"category": "external",
"summary": "SUSE Bug 1173619 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1173619"
},
{
"category": "external",
"summary": "SUSE Bug 1179191 for CVE-2020-28935",
"url": "https://bugzilla.suse.com/1179191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 6:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Enterprise Storage 7:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP3:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-BCL:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Proxy 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Retail Branch Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:libunbound2-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-anchor-1.6.8-10.6.1.x86_64",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.ppc64le",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.s390x",
"SUSE Manager Server 4.1:unbound-devel-1.6.8-10.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-01-25T13:13:57Z",
"details": "moderate"
}
],
"title": "CVE-2020-28935"
}
]
}
gsd-2020-28935
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2020-28935",
"description": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.",
"id": "GSD-2020-28935",
"references": [
"https://www.suse.com/security/cve/CVE-2020-28935.html",
"https://access.redhat.com/errata/RHSA-2022:0632",
"https://access.redhat.com/errata/RHSA-2021:1853",
"https://ubuntu.com/security/CVE-2020-28935",
"https://advisories.mageia.org/CVE-2020-28935.html",
"https://security.archlinux.org/CVE-2020-28935",
"https://linux.oracle.com/cve/CVE-2020-28935.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2020-28935"
],
"details": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.",
"id": "GSD-2020-28935",
"modified": "2023-12-13T01:22:01.773276Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "sep@nlnetlabs.nl",
"DATE_PUBLIC": "2020-12-01T00:00:00.000Z",
"ID": "CVE-2020-28935",
"STATE": "PUBLIC",
"TITLE": "Local symlink attack in Unbound and NSD"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Unbound",
"version": {
"version_data": [
{
"version_value": "\u003c= 1.12.0"
}
]
}
},
{
"product_name": "NSD",
"version": {
"version_data": [
{
"version_value": "\u003c= 4.3.3"
}
]
}
}
]
},
"vendor_name": "NLnet Labs"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "We would like to thank Mason Loring Bliss for bringing the issue to our attention."
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt",
"refsource": "CONFIRM",
"url": "https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt"
},
{
"name": "https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt",
"refsource": "CONFIRM",
"url": "https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt"
},
{
"name": "GLSA-202101-38",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202101-38"
},
{
"name": "[debian-lts-announce] 20210212 [SECURITY] [DLA 2556-1] unbound1.9 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00017.html"
},
{
"name": "[debian-lts-announce] 20230329 [SECURITY] [DLA 3371-1] unbound security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:nlnetlabs:unbound:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "1.13.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:nlnetlabs:name_server_daemon:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "4.3.4",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "sep@nlnetlabs.nl",
"ID": "CVE-2020-28935"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-59"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt"
},
{
"name": "https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt"
},
{
"name": "GLSA-202101-38",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202101-38"
},
{
"name": "[debian-lts-announce] 20210212 [SECURITY] [DLA 2556-1] unbound1.9 security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00017.html"
},
{
"name": "[debian-lts-announce] 20230329 [SECURITY] [DLA 3371-1] unbound security update",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.1,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2023-03-29T15:15Z",
"publishedDate": "2020-12-07T22:15Z"
}
}
}
fkie_cve-2020-28935
Vulnerability from fkie_nvd
Published
2020-12-07 22:15
Modified
2024-11-21 05:23
Severity ?
Summary
NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| sep@nlnetlabs.nl | https://lists.debian.org/debian-lts-announce/2021/02/msg00017.html | Mailing List, Third Party Advisory | |
| sep@nlnetlabs.nl | https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html | ||
| sep@nlnetlabs.nl | https://security.gentoo.org/glsa/202101-38 | Third Party Advisory | |
| sep@nlnetlabs.nl | https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt | Vendor Advisory | |
| sep@nlnetlabs.nl | https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2021/02/msg00017.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://security.gentoo.org/glsa/202101-38 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| nlnetlabs | name_server_daemon | * | |
| nlnetlabs | unbound | * | |
| debian | debian_linux | 9.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:nlnetlabs:name_server_daemon:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2999AD3A-4E86-4E7F-94DC-7972AF046056",
"versionEndExcluding": "4.3.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:nlnetlabs:unbound:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B5033957-63F8-4F49-A451-96BEF9644520",
"versionEndExcluding": "1.13.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing the PID file, Unbound and NSD create the file if it is not there, or open an existing file for writing. In case the file was already present, they would follow symlinks if the file happened to be a symlink instead of a regular file. An additional chown of the file would then take place after it was written, making the user Unbound/NSD is supposed to run as the new owner of the file. If an attacker has local access to the user Unbound/NSD runs as, she could create a symlink in place of the PID file pointing to a file that she would like to erase. If then Unbound/NSD is killed and the PID file is not cleared, upon restarting with root privileges, Unbound/NSD will rewrite any file pointed at by the symlink. This is a local vulnerability that could create a Denial of Service of the system Unbound/NSD is running on. It requires an attacker having access to the limited permission user Unbound/NSD runs as and point through the symlink to a critical file on the system."
},
{
"lang": "es",
"value": "NLnet Labs Unbound, hasta la versi\u00f3n 1.12.0 incluy\u00e9ndola, y NLnet Labs NSD, hasta la versi\u00f3n 4.3.3 incluy\u00e9ndola, contienen una vulnerabilidad local que permitir\u00eda un ataque de tipo symlink local. Al escribir el archivo PID, Unbound y NSD crean el archivo si no est\u00e1 all\u00ed, o abren un archivo existente para escribir. En caso de que el archivo ya existiera, seguir\u00edan enlaces simb\u00f3licos si el archivo fuera un enlace simb\u00f3lico en lugar de un archivo normal. Luego, se llevar\u00eda a cabo una copia adicional del archivo despu\u00e9s de que se escribi\u00f3, lo que har\u00eda que el usuario Unbound/NSD se ejecute como el nuevo propietario del archivo. Si un atacante tiene acceso local al usuario con el que se ejecuta Unbound/NSD, podr\u00eda crear un enlace simb\u00f3lico en lugar del archivo PID que apunta hacia un archivo que le gustar\u00eda borrar. Si luego Unbound/NSD es eliminado y el archivo PID no se borra, al reiniciar con privilegios root, Unbound/NSD reescribir\u00e1 cualquier archivo apuntado por el enlace simb\u00f3lico. Esta es una vulnerabilidad local que podr\u00eda crear una Denegaci\u00f3n de Servicio del sistema en el que se ejecuta Unbound/NSD. Requiere que un atacante tenga acceso al usuario de permiso limitado que se ejecuta como Unbound/NSD y apunta por medio del enlace simb\u00f3lico a un archivo cr\u00edtico en el sistema"
}
],
"id": "CVE-2020-28935",
"lastModified": "2024-11-21T05:23:19.620",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.1,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-12-07T22:15:20.853",
"references": [
{
"source": "sep@nlnetlabs.nl",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00017.html"
},
{
"source": "sep@nlnetlabs.nl",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html"
},
{
"source": "sep@nlnetlabs.nl",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202101-38"
},
{
"source": "sep@nlnetlabs.nl",
"tags": [
"Vendor Advisory"
],
"url": "https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt"
},
{
"source": "sep@nlnetlabs.nl",
"tags": [
"Vendor Advisory"
],
"url": "https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00017.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00024.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202101-38"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.nlnetlabs.nl/downloads/nsd/CVE-2020-28935.txt"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt"
}
],
"sourceIdentifier": "sep@nlnetlabs.nl",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-59"
}
],
"source": "sep@nlnetlabs.nl",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-59"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…