{"id":"MGASA-2018-0091","summary":"Updated unbound packages fix security vulnerability","details":"Updated unbound packages to fix security vulnerability (CVE-2017-15105)\nin the processing of wildcard synthesized NSEC records. While synthesis\nof NSEC records is allowed by RFC4592, these synthesized owner names\nshould not be used in the NSEC processing. This was, however, happenning\nin Unbound 1.6.7 and earlier versions.\n","modified":"2026-04-16T01:45:51.503587605Z","published":"2018-01-22T21:02:28Z","upstream":["CVE-2017-15105"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2018-0091.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=22423"}],"affected":[{"package":{"name":"unbound","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/unbound?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.6.8-1.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0091.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}