Mailing List Archive

From:: Florian Obser <florian@openbsd.org>
Subject:: Re: unbound update
To:: tech@openbsd.org
Date:: Tue, 08 Oct 2024 18:10:04 +0200

Download raw body.

Thread

- 2024-10-11 11:35 Kapetanakis Giannis:
  unbound update
2024-10-08 15:07 Kirill A. Korinsky:
unbound update
- 2024-10-08 16:10 Florian Obser:
  unbound update

On 2024-10-08 17:07 +02, Kirill A. Korinsky <kirill@korins.ky> wrote:
> On Mon, 07 Oct 2024 17:03:48 +0200,
> Stuart Henderson <stu@spacehopper.org> wrote:
>> 
>> DNS compression has been giving gifts all over the place for years -
>> in this case there's a denial-of-service vector which can be triggered
>> by querying a constructed DNS record.
>> 
>> https://nlnetlabs.nl/downloads/unbound/CVE-2024-8508.txt
>> 
>
> I wonder if unwind is impacted by this as well?
>
> -- 
> wbr, Kirill
>

yes, sthen also patched unwind.

-- 
In my defence, I have been left unsupervised.

- 2024-10-11 11:35 Kapetanakis Giannis:
  unbound update
2024-10-08 15:07 Kirill A. Korinsky:
unbound update
- 2024-10-08 16:10 Florian Obser:
  unbound update