|Category:||SuSE Local Security Checks|
|Title:||SUSE: Security Advisory (SUSE-SU-2020:1772-1)|
|Summary:||The remote host is missing an update for the 'unbound' package(s) announced via the SUSE-SU-2020:1772-1 advisory.|
The remote host is missing an update for the 'unbound' package(s) announced via the SUSE-SU-2020:1772-1 advisory.
This update for unbound fixes the following issues:
CVE-2020-12662: Fixed an issue where unbound could have been tricked
into amplifying an incoming query into a large number of queries
directed to a target (bsc#1171889).
CVE-2020-12663: Fixed an issue where malformed answers from upstream
name servers could have been used to make unbound unresponsive
CVE-2019-18934: Fixed a vulnerability in the IPSec module which could
have allowed code execution after receiving a special crafted answer
'unbound' package(s) on SUSE Linux Enterprise Module for Basesystem 15-SP2, SUSE Linux Enterprise Module for Basesystem 15-SP1
Please install the updated package(s).
Common Vulnerability Exposure (CVE) ID: CVE-2019-18934|
Common Vulnerability Exposure (CVE) ID: CVE-2020-12662
Common Vulnerability Exposure (CVE) ID: CVE-2020-12663
|Copyright||Copyright (C) 2021 Greenbone Networks GmbH|
|This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.