Hi, On 12-12-19 19:35, Ralph Dolmans via Unbound-users wrote: > This release contains a number of security related fixes, contributed by > X41 D-Sec. They have conducted a security audit of Unbound, funded by > OSTIF. The previous CVEs fixed in 1.9.4 and 1.9.5 were the most > important ones, less important fixes and side findings for more robust > code have been included in this release, alongside a normal number of > bug fixes.
Some links for those who are interested in the security audit results: - Final report: https://www.x41-dsec.de/reports/X41-Unbound-Security-Audit-2019-Final-Report-Public.pdf - X41 D-Sec news item: https://www.x41-dsec.de/security/research/job/news/2019/12/11/unbound/ - OSTIF news item: https://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/ Thanks to OSTIF for sponsoring and X41 D-Sec for performing the Unbound security audit! -- Ralph
