diff --git a/libunbound-devel-mini.changes b/libunbound-devel-mini.changes index 37bfa59..954fcbd 100644 --- a/libunbound-devel-mini.changes +++ b/libunbound-devel-mini.changes @@ -1,3 +1,13 @@ +------------------------------------------------------------------- +Tue May 19 10:45:19 UTC 2020 - Michael Ströder + +- update to 1.10.1 with security fixes + * CVE-2020-12662 Unbound can be tricked into amplifying an incoming + query into a large number of queries directed to a target. + * CVE-2020-12663 Malformed answers from upstream name servers can be + used to make Unbound unresponsive. +- removed unused unbound-1.10.1.tar.gz.asc for now + ------------------------------------------------------------------- Thu Feb 20 21:40:10 UTC 2020 - Michael Ströder diff --git a/libunbound-devel-mini.spec b/libunbound-devel-mini.spec index 6d5a20d..4454473 100644 --- a/libunbound-devel-mini.spec +++ b/libunbound-devel-mini.spec @@ -1,7 +1,7 @@ # # spec file for package libunbound-devel-mini # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2020 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -24,7 +24,7 @@ # Name: libunbound-devel-mini -Version: 1.10.0 +Version: 1.10.1 Release: 0 # # @@ -40,7 +40,7 @@ Conflicts: unbound-devel Conflicts: libunbound8 Provides: libunbound-devel = %{version}-%{release} # -Url: https://www.unbound.net/ +URL: https://www.unbound.net/ Source: https://www.unbound.net/downloads/unbound-%{version}.tar.gz Source1: libunbound-devel-mini-rpmlintrc Source5: root.key diff --git a/unbound-1.10.0.tar.gz b/unbound-1.10.0.tar.gz deleted file mode 100644 index a32d383..0000000 --- a/unbound-1.10.0.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:152f486578242fe5c36e89995d0440b78d64c05123990aae16246b7f776ce955 -size 5727902 diff --git a/unbound-1.10.1.tar.gz b/unbound-1.10.1.tar.gz new file mode 100644 index 0000000..0606cff --- /dev/null +++ b/unbound-1.10.1.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:b73677c21a71cf92f15cc8cfe76a3d875e40f65b6150081c39620b286582d536 +size 5729334 diff --git a/unbound.changes b/unbound.changes index a6297e2..b9342d8 100644 --- a/unbound.changes +++ b/unbound.changes @@ -1,3 +1,13 @@ +------------------------------------------------------------------- +Tue May 19 10:45:19 UTC 2020 - Michael Ströder + +- update to 1.10.1 with security fixes + * CVE-2020-12662 Unbound can be tricked into amplifying an incoming + query into a large number of queries directed to a target. + * CVE-2020-12663 Malformed answers from upstream name servers can be + used to make Unbound unresponsive. +- removed unused unbound-1.10.1.tar.gz.asc for now + ------------------------------------------------------------------- Thu Feb 20 21:40:10 UTC 2020 - Michael Ströder diff --git a/unbound.spec b/unbound.spec index 65aa987..4a7f778 100644 --- a/unbound.spec +++ b/unbound.spec @@ -1,7 +1,7 @@ # # spec file for package unbound # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2020 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -36,7 +36,7 @@ %define piddir /run Name: unbound -Version: 1.10.0 +Version: 1.10.1 Release: 0 # # @@ -71,7 +71,7 @@ BuildRequires: pkgconfig(libsystemd) %{?systemd_requires} %endif # -Url: https://www.unbound.net/ +URL: https://www.unbound.net/ Source: https://www.unbound.net/downloads/unbound-%{version}.tar.gz Source1: unbound.service Source2: unbound.conf