Unbound 1.20.0rc1 pre-release

Yorgos Thessalonikefs yorgos at nlnetlabs.nl
Wed May 1 12:03:08 UTC 2024


Hi Tuomo,

This is currently in the reserved state
https://www.cve.org/CVERecord?id=CVE-2024-33655

Where do you see that this is a linux kernel issue?

Best regards,
-- Yorgos



On 01/05/2024 13:20, Tuomo Soini via Unbound-users wrote:
> On Wed, 1 May 2024 11:23:28 +0200
> Wouter Wijngaards via Unbound-users <unbound-users at lists.nlnetlabs.nl>
> wrote:
> 
>> Hi,
>>
>> Unbound 1.20.0rc1 is available:
>> https://nlnetlabs.nl/downloads/unbound/unbound-1.20.0rc1.tar.gz
>> sha256
>> f56bf689f4c4e0e68e5b48a6e0ad07f3e68e71f807e7cdc3da7524dd3a7d4a10 pgp
>> https://nlnetlabs.nl/downloads/unbound/unbound-1.20.0rc1.tar.gz.asc
>>
>> This is the maintainer's pre-release of Unbound 1.20.0rc1.
>>
>> This release has a fix for the DNSBomb issue CVE-2024-33655. This has
>> a low severity for Unbound, since it makes Unbound complicit in
>> targeting others, but does not affect Unbound so much.
> 
> This must be incorrect CVE number. CVE-2024-33655 is a linux kernel
> issue.
> 


More information about the Unbound-users mailing list