aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorGravatar Fabrice Fontaine <fontaine.fabrice@gmail.com>2020-12-12 22:55:58 +0100
committerGravatar Peter Korsgaard <peter@korsgaard.com>2020-12-21 14:43:20 +0100
commit067d922b69f409ba6f8de4a1f69136ee6fc78ab7 (patch)
tree8d5eea388d982532f0fab26605162de98b70e18a
parentc5bb00629f8194eb8b8ff017855848b81813ae11 (diff)
downloadbuildroot-067d922b69f409ba6f8de4a1f69136ee6fc78ab7.tar.gz
buildroot-067d922b69f409ba6f8de4a1f69136ee6fc78ab7.tar.bz2
package/unbound: security bump to version 1.13.0
This version has fixes to connect for UDP sockets, slowing down potential ICMP side channel leakage. The fix can be controlled with the option udp-connect: yes, it is enabled by default. Additionally CVE-2020-28935 is fixed, this solves a problem where the pidfile is altered by a symlink, and fails if a symlink is encountered. See https://nlnetlabs.nl/downloads/unbound/CVE-2020-28935.txt for more information. https://github.com/NLnetLabs/unbound/releases/tag/release-1.13.0 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 4eb320112037445b8310f0fde1cde511ed05ecb3) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
-rw-r--r--package/unbound/unbound.hash6
-rw-r--r--package/unbound/unbound.mk2
2 files changed, 5 insertions, 3 deletions
diff --git a/package/unbound/unbound.hash b/package/unbound/unbound.hash
index c2c6ab7ff6..9ccea6eb88 100644
--- a/package/unbound/unbound.hash
+++ b/package/unbound/unbound.hash
@@ -1,3 +1,5 @@
+# From https://nlnetlabs.nl/downloads/unbound/unbound-1.13.0.tar.gz.sha256
+sha256 a954043a95b0326ca4037e50dace1f3a207a0a19e9a4a22f4c6718fc623db2a1 unbound-1.13.0.tar.gz
+
# Locally calculated
-sha256 5b9253a97812f24419bf2e6b3ad28c69287261cf8c8fa79e3e9f6d3bf7ef5835 unbound-1.12.0.tar.gz
-sha256 8eb9a16cbfb8703090bbfa3a2028fd46bb351509a2f90dc1001e51fbe6fd45db LICENSE
+sha256 8eb9a16cbfb8703090bbfa3a2028fd46bb351509a2f90dc1001e51fbe6fd45db LICENSE
diff --git a/package/unbound/unbound.mk b/package/unbound/unbound.mk
index d60180b6ca..8b7d1e8e9f 100644
--- a/package/unbound/unbound.mk
+++ b/package/unbound/unbound.mk
@@ -4,7 +4,7 @@
#
################################################################################
-UNBOUND_VERSION = 1.12.0
+UNBOUND_VERSION = 1.13.0
UNBOUND_SITE = https://www.unbound.net/downloads
UNBOUND_DEPENDENCIES = host-pkgconf expat libevent openssl
UNBOUND_LICENSE = BSD-3-Clause