{"id":"ALSA-2026:24369","summary":"Important: unbound security update","details":"The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.   \n\nSecurity Fix(es):  \n\n  * unbound: Heap overflow and crash with multiple nsid, cookie, padding EDNS options (CVE-2026-42944)\n  * unbound: Unbound DNSSEC Validator Denial of Service via Incorrect Write Offset Counter in Chase-Reply Messages (CVE-2026-42959)\n  * unbound: Unbound DNSSEC Validator Use-After-Free via Deep Copy Pointer Overwrite Leading to DoS and Possible Remote Code Execution (CVE-2026-33278)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n","modified":"2026-06-11T16:14:05.948083803Z","published":"2026-06-08T00:00:00Z","related":["CVE-2026-33278","CVE-2026-42944","CVE-2026-42959"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2026:24369"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-33278"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-42944"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-42959"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2479774"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2479806"},{"type":"REPORT","url":"https://bugzilla.redhat.com/2479808"},{"type":"ADVISORY","url":"https://errata.almalinux.org/9/ALSA-2026-24369.html"}],"affected":[{"package":{"name":"python3-unbound","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/python3-unbound"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.24.2-3.el9_8.1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:24369.json"}},{"package":{"name":"unbound","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/unbound"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.24.2-3.el9_8.1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:24369.json"}},{"package":{"name":"unbound-devel","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/unbound-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.24.2-3.el9_8.1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:24369.json"}},{"package":{"name":"unbound-dracut","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/unbound-dracut"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.24.2-3.el9_8.1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:24369.json"}},{"package":{"name":"unbound-libs","ecosystem":"AlmaLinux:9","purl":"pkg:rpm/almalinux/unbound-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.24.2-3.el9_8.1"}]}],"database_specific":{"source":"https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2026:24369.json"}}],"schema_version":"1.7.5"}