From af77cafb8ca077eb61c57a4bbf1b8d0032d33570 Mon Sep 17 00:00:00 2001 From: Fabrice Fontaine Date: Sun, 21 Jul 2024 17:01:16 +0200 Subject: [PATCH] package/unbound: security bump to version 1.20.0 This release has a fix for the DNSBomb issue CVE-2024-33655. This has a low severity for Unbound, since it makes Unbound complicit in targeting others, but does not affect Unbound so much. This security release also fixes CVE-2024-1931. https://nlnetlabs.nl/news/2024/May/08/unbound-1.20.0-released https://nlnetlabs.nl/news/2024/Mar/14/unbound-1.19.3-released https://nlnetlabs.nl/news/2024/Mar/07/unbound-1.19.2-released Signed-off-by: Fabrice Fontaine Signed-off-by: Thomas Petazzoni (cherry picked from commit 7ce07b7b29d08e09f52ca81c9d25728726c87d57) Signed-off-by: Peter Korsgaard --- package/unbound/unbound.hash | 4 ++-- package/unbound/unbound.mk | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/package/unbound/unbound.hash b/package/unbound/unbound.hash index 843026abc7..96ee80b0ec 100644 --- a/package/unbound/unbound.hash +++ b/package/unbound/unbound.hash @@ -1,5 +1,5 @@ -# From https://nlnetlabs.nl/downloads/unbound/unbound-1.19.1.tar.gz.sha256 -sha256 bc1d576f3dd846a0739adc41ffaa702404c6767d2b6082deb9f2f97cbb24a3a9 unbound-1.19.1.tar.gz +# From https://nlnetlabs.nl/downloads/unbound/unbound-1.20.0.tar.gz.sha256 +sha256 56b4ceed33639522000fd96775576ddf8782bb3617610715d7f1e777c5ec1dbf unbound-1.20.0.tar.gz # Locally calculated sha256 8eb9a16cbfb8703090bbfa3a2028fd46bb351509a2f90dc1001e51fbe6fd45db LICENSE diff --git a/package/unbound/unbound.mk b/package/unbound/unbound.mk index 5128d0e420..ff0262bef1 100644 --- a/package/unbound/unbound.mk +++ b/package/unbound/unbound.mk @@ -4,7 +4,7 @@ # ################################################################################ -UNBOUND_VERSION = 1.19.1 +UNBOUND_VERSION = 1.20.0 UNBOUND_SITE = https://www.unbound.net/downloads UNBOUND_INSTALL_STAGING = YES UNBOUND_DEPENDENCIES = host-pkgconf expat libevent openssl