==========================================================================
Ubuntu Security Notice USN-4149-1
October 08, 2019

unbound vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 19.04

Summary:

Unbound could be made to crash if it received a specially crafted
NOTIFY query.

Software Description:
– unbound: validating, recursive, caching DNS resolver

Details:

It was discovered that Unbound incorrectly handled certain NOTIFY queries.
An attacker could possibly use this issue to cause a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 19.04:
libunbound8 1.9.0-2ubuntu0.1
unbound 1.9.0-2ubuntu0.1

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4149-1
CVE-2019-16866

Package Information:
https://launchpad.net/ubuntu/+source/unbound/1.9.0-2ubuntu0.1
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1

iQIcBAEBAgAGBQJdnIvkAAoJEEW851uECx9ptKkQAKPRopf46g8D5KHVLSk/XYn4
tU7Rhxxg63Tmr4Kj26Iq6ZT55CmT11di/UdW7jCNGorCNedoaMHfjt9Maq3KUV2C
cWV6aKFjBi/52cTP2nU8dHxZnnaJDy/yaZWp8wVi1V/n6nu6P/e2AEz4qgQ/XEXq
6TpwSOUgZsXrwbCxSKwUow2fPmG4veH0vyyfjeIUFuI2OaRhjwG97LsLhaiRUiL7
aXPh1BC3CAdXuyRODV2+L0Q/cB327pmjkc7Rfn3hxSRhVTmJEOhC8xXcRYXLZWYb
bt7NfPyvO3datUrYpsmCzudwT0O0hbgzjrjJ16DAbfjxmdDCyL5I4sXpKGmRA4os
LPVZkxSvdixRx+XeQNuiDOCyNMltnJrrmqsUf0M4x/pnDxQA01eUGxmG9OP2ZcKc
dUvvC86hxFTtHNdWcLL885lnuQIpK61SXEYgKGfjJysoDep7suHN9Z4HCGka4YJB
QxDscB/pgWafMWUzfsMM3ZMMdrfzrod7k9ucnTGnYdiIHS5mAsCtimi5P7S5F+Hy
PoLym20riXoeWsa7j78TXkIvwQQfS5HRq3YtZ0CRf2QbGh64yaOXcWzJNL3JS9TR
zZP9GeSCrGgR5rc2mCGj3FaDkYLh6iEOP9WT5RceAfAbC0OKALBqj+jGzAQ5ozGv
eh+VAeeyDtEdN+2HKQop
=UCWF
—–END PGP SIGNATURE—–
—