Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Security Measurement
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Insights
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2024:0982 - Security Advisory
Issued:
2024-02-26
Updated:
2024-02-26

RHSA-2024:0982 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: unbound security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for unbound is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.

Security Fix(es):

  • bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)
  • bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8 x86_64
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8 s390x
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8 ppc64le
  • Red Hat Enterprise Linux Server - TUS 8.8 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64

Fixes

  • BZ - 2263914 - CVE-2023-50387 bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator
  • BZ - 2263917 - CVE-2023-50868 bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources

CVEs

  • CVE-2023-50387
  • CVE-2023-50868

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8

SRPM
unbound-1.16.2-5.el8_8.1.src.rpm SHA-256: 3e4a4205290836fed7a8ee49f17886cad341b4f681f64a2360de473dcadbe239
x86_64
python3-unbound-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 70fc62d594bd0eb6d958e59e8690278ab1d2725dcbbff936b460b41665d18e50
python3-unbound-debuginfo-1.16.2-5.el8_8.1.i686.rpm SHA-256: 8fecbe59e15d13b22fd16250cf368b17596fd5ebe09b7a4d8ba914e6d35773a3
python3-unbound-debuginfo-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 0e15194ba9084a234534b029c5abc0fe506de991bad81996e5b660307bb4a64d
unbound-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 56fb9b0d2181e9562c3b05567a4a27d6469b6fdd372ce8de0c8a69dae81cb6d4
unbound-debuginfo-1.16.2-5.el8_8.1.i686.rpm SHA-256: 5250915ad66863f04a1ba8f83775db4abb22b0869b42ed9a00ab937be96874cb
unbound-debuginfo-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: f69c01b6aaae041d416103dcc93e5c0cb9b528885b555c3e252ceac2db6f05f6
unbound-debugsource-1.16.2-5.el8_8.1.i686.rpm SHA-256: 8b0361ae69daf2004e6b19e6e01c6f1ae981821cf4e93e0148caffb8338c0c26
unbound-debugsource-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: af530b63bab80836a6b578c5ed5c86c67cb784196cb72c395ae8e47608508650
unbound-devel-1.16.2-5.el8_8.1.i686.rpm SHA-256: 6197abce99be1ef27a4b36b39dc8df291fda321ebd71a8d962a1526dd1fce04f
unbound-devel-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 88c9753866b1fa72ed2ef43479b08c463e3d4e51769c072a8faee2423959bcbd
unbound-libs-1.16.2-5.el8_8.1.i686.rpm SHA-256: e522021d2d5383c8dc9bbc36fceded0335a619ac6c01e7e42311f41873bd20fc
unbound-libs-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: c5e5c6c3c801ba80b7f30f2f064a47427ebe56df8ddd1e212146d73e14919279
unbound-libs-debuginfo-1.16.2-5.el8_8.1.i686.rpm SHA-256: 16c0ac5311a1551ef3a1de785cb3ca9965d7aef10ffb909cde5b8ed647642b13
unbound-libs-debuginfo-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: d284298f8b85184ef921e335161a46dd651aedfc3a17b4ff193e54d0e38b3211

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8

SRPM
unbound-1.16.2-5.el8_8.1.src.rpm SHA-256: 3e4a4205290836fed7a8ee49f17886cad341b4f681f64a2360de473dcadbe239
s390x
python3-unbound-1.16.2-5.el8_8.1.s390x.rpm SHA-256: 1833d126d907a30b2a791e18436aa77397fffcf1b4d092d6f2b7d54ac573546a
python3-unbound-debuginfo-1.16.2-5.el8_8.1.s390x.rpm SHA-256: 78e1fc91e2a28e4be73a2b5e968111f838190e39285ba0a4530f234ef5e190c7
unbound-1.16.2-5.el8_8.1.s390x.rpm SHA-256: c279c6f50ff2d2d96f5195fc179cf603c7c681ab0dc7a9b658f29fa12a4307eb
unbound-debuginfo-1.16.2-5.el8_8.1.s390x.rpm SHA-256: 10a85a6639e00f1e028b3d816ed197a3dc309b0ea348204f77cfda9ead6cb8dc
unbound-debugsource-1.16.2-5.el8_8.1.s390x.rpm SHA-256: ef579f67a5095be0fa4933054fc75c7cd9640fe640ae6527cead41dfcf6dd7ae
unbound-devel-1.16.2-5.el8_8.1.s390x.rpm SHA-256: 18de1c17198cd4f8d0959607a4279b472d6c89e094943579c3ffa87c00bb3420
unbound-libs-1.16.2-5.el8_8.1.s390x.rpm SHA-256: 7d2e6c1d4b61b8e16bf99aade74851d57837af580a64d85df7692b876eb0abf9
unbound-libs-debuginfo-1.16.2-5.el8_8.1.s390x.rpm SHA-256: a0193da870b2311f80765597e500766afa5fa3eb081fceed98f7f59c190aefcf

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8

SRPM
unbound-1.16.2-5.el8_8.1.src.rpm SHA-256: 3e4a4205290836fed7a8ee49f17886cad341b4f681f64a2360de473dcadbe239
ppc64le
python3-unbound-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: d396c40488db1b54756cd57d80ea2a47afd298fbfdbbd7c5ee82d9331fecebaa
python3-unbound-debuginfo-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: 4ab5c1ea841d8c5044b2c8fa76cb3f53530e1f0f4063200a2381cc743d492812
unbound-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: 1e00c15119595775b11c9fdfa057956e26fecf6a759a07b73e0d986a94a11274
unbound-debuginfo-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: ac3b71486b77893d3f3b3816806f01a3c9a9eb736fc6ac6385d92645279f72e9
unbound-debugsource-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: ea70a27794d87dc352406fd67c51c7f1b8f518c4df42f1e3d48b618769de6ec9
unbound-devel-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: 6bd0177a805821a00821ddf3bfc010f4731485e9aa7b7e6cf739f3b25cba54da
unbound-libs-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: 2d6b2a2457a0d7bbcb37949c155ffc19e2e9268822dbe94890998d27fd0f186a
unbound-libs-debuginfo-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: fd791264d98199dccd7a3082b0a46ee9b76a0aa8513c561140ee76d52f21eff5

Red Hat Enterprise Linux Server - TUS 8.8

SRPM
unbound-1.16.2-5.el8_8.1.src.rpm SHA-256: 3e4a4205290836fed7a8ee49f17886cad341b4f681f64a2360de473dcadbe239
x86_64
python3-unbound-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 70fc62d594bd0eb6d958e59e8690278ab1d2725dcbbff936b460b41665d18e50
python3-unbound-debuginfo-1.16.2-5.el8_8.1.i686.rpm SHA-256: 8fecbe59e15d13b22fd16250cf368b17596fd5ebe09b7a4d8ba914e6d35773a3
python3-unbound-debuginfo-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 0e15194ba9084a234534b029c5abc0fe506de991bad81996e5b660307bb4a64d
unbound-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 56fb9b0d2181e9562c3b05567a4a27d6469b6fdd372ce8de0c8a69dae81cb6d4
unbound-debuginfo-1.16.2-5.el8_8.1.i686.rpm SHA-256: 5250915ad66863f04a1ba8f83775db4abb22b0869b42ed9a00ab937be96874cb
unbound-debuginfo-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: f69c01b6aaae041d416103dcc93e5c0cb9b528885b555c3e252ceac2db6f05f6
unbound-debugsource-1.16.2-5.el8_8.1.i686.rpm SHA-256: 8b0361ae69daf2004e6b19e6e01c6f1ae981821cf4e93e0148caffb8338c0c26
unbound-debugsource-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: af530b63bab80836a6b578c5ed5c86c67cb784196cb72c395ae8e47608508650
unbound-devel-1.16.2-5.el8_8.1.i686.rpm SHA-256: 6197abce99be1ef27a4b36b39dc8df291fda321ebd71a8d962a1526dd1fce04f
unbound-devel-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 88c9753866b1fa72ed2ef43479b08c463e3d4e51769c072a8faee2423959bcbd
unbound-libs-1.16.2-5.el8_8.1.i686.rpm SHA-256: e522021d2d5383c8dc9bbc36fceded0335a619ac6c01e7e42311f41873bd20fc
unbound-libs-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: c5e5c6c3c801ba80b7f30f2f064a47427ebe56df8ddd1e212146d73e14919279
unbound-libs-debuginfo-1.16.2-5.el8_8.1.i686.rpm SHA-256: 16c0ac5311a1551ef3a1de785cb3ca9965d7aef10ffb909cde5b8ed647642b13
unbound-libs-debuginfo-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: d284298f8b85184ef921e335161a46dd651aedfc3a17b4ff193e54d0e38b3211

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8

SRPM
unbound-1.16.2-5.el8_8.1.src.rpm SHA-256: 3e4a4205290836fed7a8ee49f17886cad341b4f681f64a2360de473dcadbe239
aarch64
python3-unbound-1.16.2-5.el8_8.1.aarch64.rpm SHA-256: f31050c151a100c5bfb95d01bfc20c78375847198883a903c6ac8c8670a594ea
python3-unbound-debuginfo-1.16.2-5.el8_8.1.aarch64.rpm SHA-256: a612bb6be753acad66d89baf20509033aabea2ba9bfdbd59f71db248591ab601
unbound-1.16.2-5.el8_8.1.aarch64.rpm SHA-256: 1eedf591448a387f2bf0925f35763f4f256c39c761ea6d8d799e6493f5b1240d
unbound-debuginfo-1.16.2-5.el8_8.1.aarch64.rpm SHA-256: c6de4d5942806f848226f27b08945030cebc95fdb55782244e650859fefe2047
unbound-debugsource-1.16.2-5.el8_8.1.aarch64.rpm SHA-256: 43d0773bcce048d2a091bd33f14e7c1305b8675db047a4d179d63700b21b9a95
unbound-devel-1.16.2-5.el8_8.1.aarch64.rpm SHA-256: f203622165c85e3f521ea77a96f4da5589c2f89a83ec486ce779c0fadf01d63a
unbound-libs-1.16.2-5.el8_8.1.aarch64.rpm SHA-256: ff591e1819f5c714c5c00cbb52c09875936979032d508e2b0b0565cf5eeb58a7
unbound-libs-debuginfo-1.16.2-5.el8_8.1.aarch64.rpm SHA-256: 6daac4f36b565741dac975f7737e197423cf5a42d7b96952c696be73e3491956

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8

SRPM
unbound-1.16.2-5.el8_8.1.src.rpm SHA-256: 3e4a4205290836fed7a8ee49f17886cad341b4f681f64a2360de473dcadbe239
ppc64le
python3-unbound-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: d396c40488db1b54756cd57d80ea2a47afd298fbfdbbd7c5ee82d9331fecebaa
python3-unbound-debuginfo-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: 4ab5c1ea841d8c5044b2c8fa76cb3f53530e1f0f4063200a2381cc743d492812
unbound-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: 1e00c15119595775b11c9fdfa057956e26fecf6a759a07b73e0d986a94a11274
unbound-debuginfo-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: ac3b71486b77893d3f3b3816806f01a3c9a9eb736fc6ac6385d92645279f72e9
unbound-debugsource-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: ea70a27794d87dc352406fd67c51c7f1b8f518c4df42f1e3d48b618769de6ec9
unbound-devel-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: 6bd0177a805821a00821ddf3bfc010f4731485e9aa7b7e6cf739f3b25cba54da
unbound-libs-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: 2d6b2a2457a0d7bbcb37949c155ffc19e2e9268822dbe94890998d27fd0f186a
unbound-libs-debuginfo-1.16.2-5.el8_8.1.ppc64le.rpm SHA-256: fd791264d98199dccd7a3082b0a46ee9b76a0aa8513c561140ee76d52f21eff5

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8

SRPM
unbound-1.16.2-5.el8_8.1.src.rpm SHA-256: 3e4a4205290836fed7a8ee49f17886cad341b4f681f64a2360de473dcadbe239
x86_64
python3-unbound-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 70fc62d594bd0eb6d958e59e8690278ab1d2725dcbbff936b460b41665d18e50
python3-unbound-debuginfo-1.16.2-5.el8_8.1.i686.rpm SHA-256: 8fecbe59e15d13b22fd16250cf368b17596fd5ebe09b7a4d8ba914e6d35773a3
python3-unbound-debuginfo-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 0e15194ba9084a234534b029c5abc0fe506de991bad81996e5b660307bb4a64d
unbound-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 56fb9b0d2181e9562c3b05567a4a27d6469b6fdd372ce8de0c8a69dae81cb6d4
unbound-debuginfo-1.16.2-5.el8_8.1.i686.rpm SHA-256: 5250915ad66863f04a1ba8f83775db4abb22b0869b42ed9a00ab937be96874cb
unbound-debuginfo-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: f69c01b6aaae041d416103dcc93e5c0cb9b528885b555c3e252ceac2db6f05f6
unbound-debugsource-1.16.2-5.el8_8.1.i686.rpm SHA-256: 8b0361ae69daf2004e6b19e6e01c6f1ae981821cf4e93e0148caffb8338c0c26
unbound-debugsource-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: af530b63bab80836a6b578c5ed5c86c67cb784196cb72c395ae8e47608508650
unbound-devel-1.16.2-5.el8_8.1.i686.rpm SHA-256: 6197abce99be1ef27a4b36b39dc8df291fda321ebd71a8d962a1526dd1fce04f
unbound-devel-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: 88c9753866b1fa72ed2ef43479b08c463e3d4e51769c072a8faee2423959bcbd
unbound-libs-1.16.2-5.el8_8.1.i686.rpm SHA-256: e522021d2d5383c8dc9bbc36fceded0335a619ac6c01e7e42311f41873bd20fc
unbound-libs-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: c5e5c6c3c801ba80b7f30f2f064a47427ebe56df8ddd1e212146d73e14919279
unbound-libs-debuginfo-1.16.2-5.el8_8.1.i686.rpm SHA-256: 16c0ac5311a1551ef3a1de785cb3ca9965d7aef10ffb909cde5b8ed647642b13
unbound-libs-debuginfo-1.16.2-5.el8_8.1.x86_64.rpm SHA-256: d284298f8b85184ef921e335161a46dd651aedfc3a17b4ff193e54d0e38b3211

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat LinkedIn YouTube Facebook X, formerly Twitter

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2025 Red Hat, Inc.

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility