Release date:
2026-06-03 09:42:06 UTC
Description:
- CVE-2026-40622: clamp NS RRset TTL to the cached value in the
higher-trust branch of need_to_update_rrset() to prevent the
"ghost domain" variant where an attacker-controlled higher-trust
NS response revives a revoked delegation.
Updated packages:
-
python3-unbound-1.16.2-19.el9_6.1.tuxcare.els7.x86_64.rpm
sha:a4cb41665d894d2d0abcb0f26aed50794a68b3341bc9ccd84ab30bc2e7c45720
-
unbound-1.16.2-19.el9_6.1.tuxcare.els7.x86_64.rpm
sha:e055ea6d81f38347373e1111703bacf9a256efd189872ac6a48546f84990ff00
-
unbound-devel-1.16.2-19.el9_6.1.tuxcare.els7.i686.rpm
sha:cb9780dbcaffbc5c9dd0b87be3a528ce11dd3b9bbfa9891cda9dfe8303aa271c
-
unbound-devel-1.16.2-19.el9_6.1.tuxcare.els7.x86_64.rpm
sha:e94710e763a7ab4d22b807eef1b96491649ff48ef234bc00b7fc6e88ad11b4da
-
unbound-dracut-1.16.2-19.el9_6.1.tuxcare.els7.x86_64.rpm
sha:fbaeb2df0ebf62b45cdf87fd9c7be93c8a41a729d741b54fcc937dcf8ea9d54f
-
unbound-libs-1.16.2-19.el9_6.1.tuxcare.els7.i686.rpm
sha:f68477f56415b91e14291a1d76f0250c251bf368fb87d58aade259ed6fbb7170
-
unbound-libs-1.16.2-19.el9_6.1.tuxcare.els7.x86_64.rpm
sha:a9e8534c721732d249bc0c58832a01878c1f3766ae8fe6bb6bbe74acab5b461a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
