WARNING: THIS SITE IS A MIRROR OF GITHUB.COM / IT CANNOT LOGIN OR REGISTER ACCOUNTS / THE CONTENTS ARE PROVIDED AS-IS / THIS SITE ASSUMES NO RESPONSIBILITY FOR ANY DISPLAYED CONTENT OR LINKS / IF YOU FOUND SOMETHING MAY NOT GOOD FOR EVERYONE, CONTACT ADMIN AT ilovescratch@foxmail.com
Skip to content

Unbound 1.24.1

Choose a tag to compare

View all tags
@gthess gthess released this 22 Oct 10:28
· 80 commits to master since this release
release-1.24.1
This tag was signed with the committer’s verified signature.
gthess Yorgos Thessalonikefs
GPG key ID: CFF3344D9087A490
Verified
Learn about vigilant mode.
a33f063

This security release fixes CVE-2025-11411.

Promiscuous NS RRSets that complement DNS replies in the authority
section can be used to trick resolvers to update their delegation
information for the zone.

The CVE is described here
https://nlnetlabs.nl/downloads/unbound/CVE-2025-11411.txt

We would like to thank Yuxiao Wu, Yunyi Zhang, Baojun Liu and Haixin
Duan from Tsinghua University for discovering and responsibly disclosing
the vulnerability.

Bug Fixes:

  • Fix CVE-2025-11411 (possible domain hijacking attack), reported by
    Yuxiao Wu, Yunyi Zhang, Baojun Liu and Haixin Duan from Tsinghua
    University.
Assets 2
Loading