Unbound 1.16.3 released

Wouter Wijngaards wouter at nlnetlabs.nl
Wed Sep 21 10:05:23 UTC 2022


Unbound 1.16.3 is available:
sha256 ea0c6665e2c3325b769eac1dfccd60fe1828d5fcf662650039eccb3f67edb28e
pgp https://nlnetlabs.nl/downloads/unbound/unbound-1.16.3.tar.gz.asc

This release fixes CVE-2022-3204 Non-Responsive Delegation
Attack. It was reported by Yehuda Afek from Tel-Aviv
University and Anat Bremler-Barr and Shani Stajnrod from
Reichman University.

This fixes for better performance when under load, by cutting
promiscuous queries for nameserver discovery and limiting the
number of times a delegation point can look in the cache for
missing records.

Bug Fixes
- Patch for CVE-2022-3204 Non-Responsive Delegation Attack.

Best regards, Wouter

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.nlnetlabs.nl/pipermail/unbound-users/attachments/20220921/f6c45a46/attachment.bin>

More information about the Unbound-users mailing list