Lucene search
RedHatRHSA-2022:8062HistoryNov 15, 2022 - 6:14 a.m.
(RHSA-2022:8062) Moderate: unbound security, bug fix, and enhancement update
2022-11-1506:14:38
access.redhat.com
17
unbound
dns resolver
security fix
ghost domain attack
cve-2022-30698
cve-2022-30699
red hat enterprise linux 9.1
0.001 Low
EPSS
Percentile
45.5%
The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.
The following packages have been upgraded to a later upstream version: unbound (1.16.2). (BZ#2087120)
Security Fix(es):
-
unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30698)
-
unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30699)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.1 Release Notes linked from the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 9 | ppc64le | python3-unbound-debuginfo | < 1.16.2-2.el9 | python3-unbound-debuginfo-1.16.2-2.el9.ppc64le.rpm |
| RedHat | 9 | ppc64le | python3-unbound | < 1.16.2-2.el9 | python3-unbound-1.16.2-2.el9.ppc64le.rpm |
| RedHat | 9 | x86_64 | unbound-debuginfo | < 1.16.2-2.el9 | unbound-debuginfo-1.16.2-2.el9.x86_64.rpm |
| RedHat | 9 | s390x | unbound | < 1.16.2-2.el9 | unbound-1.16.2-2.el9.s390x.rpm |
| RedHat | 9 | aarch64 | unbound-debuginfo | < 1.16.2-2.el9 | unbound-debuginfo-1.16.2-2.el9.aarch64.rpm |
| RedHat | 9 | x86_64 | unbound-libs | < 1.16.2-2.el9 | unbound-libs-1.16.2-2.el9.x86_64.rpm |
| RedHat | 9 | ppc64le | unbound | < 1.16.2-2.el9 | unbound-1.16.2-2.el9.ppc64le.rpm |
| RedHat | 9 | x86_64 | unbound | < 1.16.2-2.el9 | unbound-1.16.2-2.el9.x86_64.rpm |
| RedHat | 9 | i686 | unbound-libs-debuginfo | < 1.16.2-2.el9 | unbound-libs-debuginfo-1.16.2-2.el9.i686.rpm |
| RedHat | 9 | s390x | unbound-devel | < 1.16.2-2.el9 | unbound-devel-1.16.2-2.el9.s390x.rpm |
Related
osv
osv
CVE-2022-30698
2022-08-01 15:15:09
CVE-2022-30699
2022-08-01 15:15:09
Moderate: unbound security, bug fix, and enhancement update
2022-11-15 00:00:00
nessus
nessus
Rocky Linux 9 : unbound (RLSA-2022:8062)
2023-11-06 00:00:00
AlmaLinux 8 : unbound (ALSA-2022:7622)
2022-11-12 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5569-1)
2022-08-26 00:00:00
Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2022-2922)
2022-12-30 00:00:00
Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2022-2702)
2022-11-03 00:00:00
rocky
rocky
unbound security, bug fix, and enhancement update
2022-11-15 06:14:38
unbound security, bug fix, and enhancement update
2022-11-08 06:24:55
fedora
fedora
[SECURITY] Fedora 36 Update: unbound-1.16.2-3.fc36
2022-08-12 01:42:35
[SECURITY] Fedora 35 Update: unbound-1.16.2-3.fc35
2022-08-25 07:48:42
amazon
amazon
Medium: unbound
2024-02-15 03:52:00
freebsd
freebsd
Unbound -- Multiple vulnerabilities
2022-08-01 00:00:00
redos
redos
ROS-20240423-10
2024-04-23 00:00:00
oraclelinux
oraclelinux
unbound security, bug fix, and enhancement update
2022-11-15 00:00:00
unbound security, bug fix, and enhancement update
2022-11-22 00:00:00
almalinux
almalinux
Moderate: unbound security, bug fix, and enhancement update
2022-11-08 00:00:00
Moderate: unbound security, bug fix, and enhancement update
2022-11-15 00:00:00
cloudfoundry
cloudfoundry
USN-5569-1: Unbound vulnerabilities | Cloud Foundry
2022-09-29 00:00:00
ubuntucve
ubuntucve
CVE-2022-30699
2022-08-01 00:00:00
CVE-2022-30698
2022-08-01 00:00:00
ubuntu
ubuntu
Unbound vulnerabilities
2022-08-16 00:00:00
mageia
mageia
Updated unbound packages fix security vulnerability
2022-08-26 00:21:07
redhat
redhat
(RHSA-2022:7622) Moderate: unbound security, bug fix, and enhancement update
2022-11-08 06:24:55
(RHSA-2024:2045) Moderate: unbound security update
2024-04-25 06:32:05
photon
photon
Moderate Photon OS Security Update - PHSA-2022-3.0-0440
2022-08-23 00:00:00
Important Photon OS Security Update - PHSA-2022-0232
2022-08-18 00:00:00
Important Photon OS Security Update - PHSA-2022-0511
2022-08-24 00:00:00
gentoo
gentoo
Unbound: Multiple Vulnerabilities
2022-12-19 00:00:00
debian
debian
[SECURITY] [DLA 3371-1] unbound security update
2023-03-29 12:52:49
debiancve
debiancve
CVE-2022-30699
2022-08-01 15:15:09
CVE-2022-30698
2022-08-01 15:15:09
nvd
nvd
CVE-2022-30699
2022-08-01 15:15:09
CVE-2022-30698
2022-08-01 15:15:09
cve
cve
CVE-2022-30699
2022-08-01 15:15:09
CVE-2022-30698
2022-08-01 15:15:09
alpinelinux
alpinelinux
CVE-2022-30699
2022-08-01 15:15:09
CVE-2022-30698
2022-08-01 15:15:09
veracode
veracode
Insecure Caching
2022-08-06 04:54:28
Remote Code Execution
2022-08-06 05:00:03
cbl_mariner
cbl_mariner
CVE-2022-30699 affecting package unbound for versions less than 1.16.2-1
2022-08-31 06:17:52
CVE-2022-30698 affecting package unbound 1.10.0-5
2024-06-29 09:08:28
CVE-2022-30698 affecting package unbound for versions less than 1.16.2-1
2022-08-31 06:17:52
cvelist
cvelist
prion
prion
Design/Logic Flaw
2022-08-01 15:15:00
Design/Logic Flaw
2022-08-01 15:15:00
redhatcve
redhatcve
CVE-2022-30698
2022-08-09 09:36:58
CVE-2022-30699
2022-08-09 09:37:00
