[Git][security-tracker-team/security-tracker][master] unbound DSA

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Aug 27 22:00:28 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
948f435a by Moritz Mühlenhoff at 2025-08-27T22:59:59+02:00
unbound DSA

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -115132,6 +115132,7 @@ CVE-2024-21302 (Summary: As of July 8, 2025 Microsoft has completed mitigations
 CVE-2024-43168 (DISPUTE NOTE: this issue does not pose a security risk as it (accordin ...)
 	{DLA-3903-1}
 	- unbound 1.20.0-1 (unimportant)
+	[bookworm] - unbound 1.17.1-2+deb12u3
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2303462
 	NOTE: https://github.com/NLnetLabs/unbound/issues/1039
 	NOTE: https://github.com/NLnetLabs/unbound/pull/1040
@@ -115143,6 +115144,7 @@ CVE-2024-43168 (DISPUTE NOTE: this issue does not pose a security risk as it (ac
 CVE-2024-43167 (DISPUTE NOTE: this issue does not pose a security risk as it (accordin ...)
 	{DLA-3903-1}
 	- unbound 1.21.1-1 (bug #1078647; unimportant)
+	[bookworm] - unbound 1.17.1-2+deb12u3
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2303456
 	NOTE: https://github.com/NLnetLabs/unbound/issues/1072
 	NOTE: https://github.com/NLnetLabs/unbound/pull/1073


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[27 Aug 2025] DSA-5987-1 unbound - security update
+	{CVE-2024-8508 CVE-2024-33655 CVE-2025-5994}
+	[bookworm] - unbound 1.17.1-2+deb12u3
 [26 Aug 2025] DSA-5986-1 node-cipher-base - security update
 	{CVE-2025-9287}
 	[bookworm] - node-cipher-base 1.0.4-6+deb12u1


=====================================
data/dsa-needed.txt
=====================================
@@ -77,9 +77,6 @@ sympa/oldstable
 --
 tomcat10
 --
-unbound (jmm)
-  Guilhem Moulin prepared an update
---
 wordpress
   Utkarsh Gupta proposed to work on an update
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/948f435a6bb9966b378f835ecaa68bda73154ffa

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/948f435a6bb9966b378f835ecaa68bda73154ffa
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250827/ea1f470a/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list