This bug was fixed in the package unbound - 1.24.2-1ubuntu1
---------------
unbound (1.24.2-1ubuntu1) resolute; urgency=medium
* Merge with Debian unstable (LP: #2126008). Remaining changes:
- Don't build with hiredis on i386. hiredis and redis are not built
on i386 and require bootstrapping due to circular
build-dependencies; simpler to just disable this in the i386
unbound server binary (that no one will ever use).
* Dropped changes:
- d/p/CVE-2025-11411 [included in 1.23.1-1]
- d/p/Fix-RebirthDay-Attack-CVE-2025-5994 [included in 1.23.1-1]
- d/p/fix_ftbfs_function [replaced by
d/p/replace-deprecated-function-by-new-action in 1.24.1-2]
unbound (1.24.2-1) unstable; urgency=medium
* new upstream security release:
Additional fix for CVE-2025-11411 (possible domain hijacking attack),
to include YXDOMAIN and non-referral nodata answers in the mitigation
as well, reported by TaoFei Guo from Peking University, Yang Luo
and JianJun Chen from Tsinghua University.
Closes: #1121446, CVE-2025-11411
* debian/upstream/signing-key.asc: merge two separate parts into one
(keeping the same two keys)
unbound (1.24.1-2) unstable; urgency=medium
* replace-deprecated-function-by-new-action.patch:
fix build with new SWIG 4.4.0 (fix from upstream)
unbound (1.24.1-1) unstable; urgency=medium
[ MichaIng ]
* d/unbound.conf.d/remote-control.conf: fix typo
[ Michael Tokarev ]
* d/upstream/signing-key.asc: add Yorgos Thessalonikefs key
(CFF3 344D 9087 A490)
* new upstream security/bugfix release
Closes: CVE-2025-11411 (possible domain hijacking attack)
unbound (1.24.0-2) unstable; urgency=medium
* d/tests/runzones: set so-sndbuf to 0
unbound tries to set it to a large(ish) value which is not allowed
for a non-root. And unbound complains to stderr, causing test failure.
unbound (1.24.0-1) unstable; urgency=medium
* new upstream release
* d/rules,d/libunbound-dev.install: drop static library and deps
(Closes: #1096189)
unbound (1.23.1-1) unstable; urgency=medium
* new upstream release
* d/apparmor-profile: remove sssd path which is in apparmor base
for a very long time
* Fix-RebirthDay-Attack-CVE-2025-5994.patch: remove
-- Jonas Jelten <[email protected]> Tue, 02 Dec 2025 17:05:25
+0100
** Changed in: unbound (Ubuntu)
Status: In Progress => Fix Released
** CVE added: https://cve.org/CVERecord?id=CVE-2025-11411
** CVE added: https://cve.org/CVERecord?id=CVE-2025-5994
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2126008
Title:
Merge unbound from Debian Unstable for r-series
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/unbound/+bug/2126008/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
