ALAS-2024-1934


Amazon Linux 1 Security Advisory: ALAS-2024-1934
Advisory Release Date: 2024-05-09 17:43 Pacific
Advisory Updated Date: 2024-05-15 19:29 Pacific
Severity: Important

Issue Overview:

An issue was discovered in some DNS recursive resolvers that allows remote attackers to cause a denial of service using a maliciously designed authority and response amplification. (CVE-2024-33655)


Affected Packages:

unbound


Issue Correction:
Run yum update unbound to update your system.

New Packages:
i686:
    unbound-python-1.6.6-1.6.amzn1.i686
    unbound-debuginfo-1.6.6-1.6.amzn1.i686
    unbound-1.6.6-1.6.amzn1.i686
    unbound-libs-1.6.6-1.6.amzn1.i686
    unbound-devel-1.6.6-1.6.amzn1.i686

src:
    unbound-1.6.6-1.6.amzn1.src

x86_64:
    unbound-1.6.6-1.6.amzn1.x86_64
    unbound-libs-1.6.6-1.6.amzn1.x86_64
    unbound-devel-1.6.6-1.6.amzn1.x86_64
    unbound-debuginfo-1.6.6-1.6.amzn1.x86_64
    unbound-python-1.6.6-1.6.amzn1.x86_64