Vulnerability-Lookup

CVE-2023-50387 (GCVE-0-2023-50387)

Vulnerability from cvelistv5 – Published: 2024-02-14 00:00 – Updated: 2025-11-04 18:20

Summary

Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

Assigner

mitre

References

30 references

URL	Tags
https://www.athene-center.de/aktuelles/key-trap
https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.1…
https://kb.isc.org/docs/cve-2023-50387
https://docs.powerdns.com/recursor/security-advis…
https://www.theregister.com/2024/02/13/dnssec_vul…
https://news.ycombinator.com/item?id=39367411
https://www.securityweek.com/keytrap-dns-attack-c…
https://www.isc.org/blogs/2024-bind-security-release/
https://news.ycombinator.com/item?id=39372384
https://gitlab.nic.cz/knot/knot-resolver/-/releas…
https://lists.thekelleys.org.uk/pipermail/dnsmasq…
https://msrc.microsoft.com/update-guide/vulnerabi…
https://access.redhat.com/security/cve/CVE-2023-50387
https://bugzilla.suse.com/show_bug.cgi?id=1219823
https://www.athene-center.de/fileadmin/content/PD…
http://www.openwall.com/lists/oss-security/2024/02/16/2	mailing-list
http://www.openwall.com/lists/oss-security/2024/02/16/3	mailing-list
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.debian.org/debian-lts-announce/2024…	mailing-list
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://lists.fedoraproject.org/archives/list/pac…	vendor-advisory
https://security.netapp.com/advisory/ntap-2024030…
https://lists.debian.org/debian-lts-announce/2024…	mailing-list

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-04T18:20:34.949Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.athene-center.de/aktuelles/key-trap"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://kb.isc.org/docs/cve-2023-50387"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.theregister.com/2024/02/13/dnssec_vulnerability_internet/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://news.ycombinator.com/item?id=39367411"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.securityweek.com/keytrap-dns-attack-could-disable-large-parts-of-internet-researchers/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.isc.org/blogs/2024-bind-security-release/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://news.ycombinator.com/item?id=39372384"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://gitlab.nic.cz/knot/knot-resolver/-/releases/v5.7.1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-50387"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugzilla.suse.com/show_bug.cgi?id=1219823"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.athene-center.de/fileadmin/content/PDF/Technical_Report_KeyTrap.pdf"
          },
          {
            "name": "[oss-security] 20240216 Re: Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2024/02/16/2"
          },
          {
            "name": "[oss-security] 20240216 Re: Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2024/02/16/3"
          },
          {
            "name": "FEDORA-2024-2e26eccfcb",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/"
          },
          {
            "name": "FEDORA-2024-e24211eff0",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/"
          },
          {
            "name": "FEDORA-2024-21310568fa",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/"
          },
          {
            "name": "[debian-lts-announce] 20240221 [SECURITY] [DLA 3736-1] unbound security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/02/msg00006.html"
          },
          {
            "name": "FEDORA-2024-b0f9656a76",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG/"
          },
          {
            "name": "FEDORA-2024-4e36df9dfd",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7/"
          },
          {
            "name": "FEDORA-2024-499b9be35f",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/"
          },
          {
            "name": "FEDORA-2024-c36c448396",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/"
          },
          {
            "name": "FEDORA-2024-c967c7d287",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ/"
          },
          {
            "name": "FEDORA-2024-e00eceb11c",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6/"
          },
          {
            "name": "FEDORA-2024-fae88b73eb",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20240307-0007/"
          },
          {
            "name": "[debian-lts-announce] 20240517 [SECURITY] [DLA 3816-1] bind9 security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/05/msg00011.html"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2024/11/msg00035.html"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2024/09/msg00001.html"
          },
          {
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/"
          },
          {
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/"
          },
          {
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/"
          },
          {
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-50387",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-05-08T17:27:29.786375Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-770",
                "description": "CWE-770 Allocation of Resources Without Limits or Throttling",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-12T15:02:17.822Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the \"KeyTrap\" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-06-10T16:14:16.780Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://www.athene-center.de/aktuelles/key-trap"
        },
        {
          "url": "https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/"
        },
        {
          "url": "https://kb.isc.org/docs/cve-2023-50387"
        },
        {
          "url": "https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html"
        },
        {
          "url": "https://www.theregister.com/2024/02/13/dnssec_vulnerability_internet/"
        },
        {
          "url": "https://news.ycombinator.com/item?id=39367411"
        },
        {
          "url": "https://www.securityweek.com/keytrap-dns-attack-could-disable-large-parts-of-internet-researchers/"
        },
        {
          "url": "https://www.isc.org/blogs/2024-bind-security-release/"
        },
        {
          "url": "https://news.ycombinator.com/item?id=39372384"
        },
        {
          "url": "https://gitlab.nic.cz/knot/knot-resolver/-/releases/v5.7.1"
        },
        {
          "url": "https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html"
        },
        {
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-50387"
        },
        {
          "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
        },
        {
          "url": "https://bugzilla.suse.com/show_bug.cgi?id=1219823"
        },
        {
          "url": "https://www.athene-center.de/fileadmin/content/PDF/Technical_Report_KeyTrap.pdf"
        },
        {
          "name": "[oss-security] 20240216 Re: Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities",
          "tags": [
            "mailing-list"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2024/02/16/2"
        },
        {
          "name": "[oss-security] 20240216 Re: Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities",
          "tags": [
            "mailing-list"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2024/02/16/3"
        },
        {
          "name": "FEDORA-2024-2e26eccfcb",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/"
        },
        {
          "name": "FEDORA-2024-e24211eff0",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/"
        },
        {
          "name": "FEDORA-2024-21310568fa",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/"
        },
        {
          "name": "[debian-lts-announce] 20240221 [SECURITY] [DLA 3736-1] unbound security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2024/02/msg00006.html"
        },
        {
          "name": "FEDORA-2024-b0f9656a76",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG/"
        },
        {
          "name": "FEDORA-2024-4e36df9dfd",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7/"
        },
        {
          "name": "FEDORA-2024-499b9be35f",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/"
        },
        {
          "name": "FEDORA-2024-c36c448396",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/"
        },
        {
          "name": "FEDORA-2024-c967c7d287",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ/"
        },
        {
          "name": "FEDORA-2024-e00eceb11c",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6/"
        },
        {
          "name": "FEDORA-2024-fae88b73eb",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20240307-0007/"
        },
        {
          "name": "[debian-lts-announce] 20240517 [SECURITY] [DLA 3816-1] bind9 security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2024/05/msg00011.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2023-50387",
    "datePublished": "2024-02-14T00:00:00.000Z",
    "dateReserved": "2023-12-07T00:00:00.000Z",
    "dateUpdated": "2025-11-04T18:20:34.949Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2023-50387",
      "date": "2026-05-27",
      "epss": "0.43701",
      "percentile": "0.97578"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-50387\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2024-02-14T16:15:45.300\",\"lastModified\":\"2025-11-04T19:16:14.237\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the \\\"KeyTrap\\\" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.\"},{\"lang\":\"es\",\"value\":\"Ciertos aspectos DNSSEC del protocolo DNS (en RFC 4035 y RFC relacionados) permiten a atacantes remotos provocar una denegaci\u00f3n de servicio (consumo de CPU) a trav\u00e9s de una o m\u00e1s respuestas DNSSEC cuando hay una zona con muchos registros DNSKEY y RRSIG, tambi\u00e9n conocido como \\\"KeyTrap\\\". \\\" asunto. La especificaci\u00f3n del protocolo implica que un algoritmo debe evaluar todas las combinaciones de registros DNSKEY y RRSIG.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-770\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-770\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142AD0DD-4CF3-4D74-9442-459CE3347E3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75CCACE6-A0EE-4A6F-BD5A-7AA504B02717\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:thekelleys:dnsmasq:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.90\",\"matchCriteriaId\":\"964796B3-BA45-4180-A8DA-64CF93CED122\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nic:knot_resolver:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.71\",\"matchCriteriaId\":\"8A8328E8-C652-4262-8C00-D89AD8F75CCF\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.8.0\",\"versionEndExcluding\":\"4.8.6\",\"matchCriteriaId\":\"5207D316-7DC9-4724-BC48-C8D3EC5087E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.9.0\",\"versionEndExcluding\":\"4.9.3\",\"matchCriteriaId\":\"FEE64451-7CB9-45BD-8168-9F48199A9363\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:powerdns:recursor:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.0.0\",\"versionEndExcluding\":\"5.0.2\",\"matchCriteriaId\":\"0526B76D-52BB-4FA1-B692-8EDEC673EAE5\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"9.0.0\",\"versionEndIncluding\":\"9.16.46\",\"matchCriteriaId\":\"F3814976-5223-4615-BA7B-E33083D3EC26\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"9.18.0\",\"versionEndIncluding\":\"9.18.22\",\"matchCriteriaId\":\"140CCABA-F134-4CC2-9960-258D6BFF34DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:isc:bind:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"9.19.0\",\"versionEndIncluding\":\"9.19.20\",\"matchCriteriaId\":\"71BAD5BF-8532-4988-A772-6CD7B851E9E2\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nlnetlabs:unbound:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.19.1\",\"matchCriteriaId\":\"8C094EEB-BAD6-495B-B1CB-671D31549F15\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2024/02/16/2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/02/16/3\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://access.redhat.com/security/cve/CVE-2023-50387\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.suse.com/show_bug.cgi?id=1219823\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://gitlab.nic.cz/knot/knot-resolver/-/releases/v5.7.1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://kb.isc.org/docs/cve-2023-50387\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/02/msg00006.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/05/msg00011.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-50387\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://news.ycombinator.com/item?id=39367411\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://news.ycombinator.com/item?id=39372384\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240307-0007/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.athene-center.de/aktuelles/key-trap\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.athene-center.de/fileadmin/content/PDF/Technical_Report_KeyTrap.pdf\",\"source\":\"cve@mitre.org\",\"tags\":[\"Technical Description\",\"Third Party Advisory\"]},{\"url\":\"https://www.isc.org/blogs/2024-bind-security-release/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.securityweek.com/keytrap-dns-attack-could-disable-large-parts-of-internet-researchers/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Press/Media Coverage\",\"Third Party Advisory\"]},{\"url\":\"https://www.theregister.com/2024/02/13/dnssec_vulnerability_internet/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/02/16/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/02/16/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://access.redhat.com/security/cve/CVE-2023-50387\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.suse.com/show_bug.cgi?id=1219823\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://gitlab.nic.cz/knot/knot-resolver/-/releases/v5.7.1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://kb.isc.org/docs/cve-2023-50387\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/02/msg00006.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/05/msg00011.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/09/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/11/msg00035.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-50387\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://news.ycombinator.com/item?id=39367411\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://news.ycombinator.com/item?id=39372384\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240307-0007/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.athene-center.de/aktuelles/key-trap\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.athene-center.de/fileadmin/content/PDF/Technical_Report_KeyTrap.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Technical Description\",\"Third Party Advisory\"]},{\"url\":\"https://www.isc.org/blogs/2024-bind-security-release/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.securityweek.com/keytrap-dns-attack-could-disable-large-parts-of-internet-researchers/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Press/Media Coverage\",\"Third Party Advisory\"]},{\"url\":\"https://www.theregister.com/2024/02/13/dnssec_vulnerability_internet/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.athene-center.de/aktuelles/key-trap\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://kb.isc.org/docs/cve-2023-50387\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.theregister.com/2024/02/13/dnssec_vulnerability_internet/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://news.ycombinator.com/item?id=39367411\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.securityweek.com/keytrap-dns-attack-could-disable-large-parts-of-internet-researchers/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.isc.org/blogs/2024-bind-security-release/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://news.ycombinator.com/item?id=39372384\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://gitlab.nic.cz/knot/knot-resolver/-/releases/v5.7.1\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-50387\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2023-50387\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://bugzilla.suse.com/show_bug.cgi?id=1219823\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.athene-center.de/fileadmin/content/PDF/Technical_Report_KeyTrap.pdf\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/02/16/2\", \"name\": \"[oss-security] 20240216 Re: Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/02/16/3\", \"name\": \"[oss-security] 20240216 Re: Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/\", \"name\": \"FEDORA-2024-2e26eccfcb\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/\", \"name\": \"FEDORA-2024-e24211eff0\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/\", \"name\": \"FEDORA-2024-21310568fa\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/02/msg00006.html\", \"name\": \"[debian-lts-announce] 20240221 [SECURITY] [DLA 3736-1] unbound security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG/\", \"name\": \"FEDORA-2024-b0f9656a76\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7/\", \"name\": \"FEDORA-2024-4e36df9dfd\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/\", \"name\": \"FEDORA-2024-499b9be35f\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/\", \"name\": \"FEDORA-2024-c36c448396\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ/\", \"name\": \"FEDORA-2024-c967c7d287\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6/\", \"name\": \"FEDORA-2024-e00eceb11c\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/\", \"name\": \"FEDORA-2024-fae88b73eb\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240307-0007/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/05/msg00011.html\", \"name\": \"[debian-lts-announce] 20240517 [SECURITY] [DLA 3816-1] bind9 security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/11/msg00035.html\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/09/msg00001.html\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-04T18:20:34.949Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-50387\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-05-08T17:27:29.786375Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-770\", \"description\": \"CWE-770 Allocation of Resources Without Limits or Throttling\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-05-08T17:27:31.437Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"references\": [{\"url\": \"https://www.athene-center.de/aktuelles/key-trap\"}, {\"url\": \"https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/\"}, {\"url\": \"https://kb.isc.org/docs/cve-2023-50387\"}, {\"url\": \"https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html\"}, {\"url\": \"https://www.theregister.com/2024/02/13/dnssec_vulnerability_internet/\"}, {\"url\": \"https://news.ycombinator.com/item?id=39367411\"}, {\"url\": \"https://www.securityweek.com/keytrap-dns-attack-could-disable-large-parts-of-internet-researchers/\"}, {\"url\": \"https://www.isc.org/blogs/2024-bind-security-release/\"}, {\"url\": \"https://news.ycombinator.com/item?id=39372384\"}, {\"url\": \"https://gitlab.nic.cz/knot/knot-resolver/-/releases/v5.7.1\"}, {\"url\": \"https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html\"}, {\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-50387\"}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2023-50387\"}, {\"url\": \"https://bugzilla.suse.com/show_bug.cgi?id=1219823\"}, {\"url\": \"https://www.athene-center.de/fileadmin/content/PDF/Technical_Report_KeyTrap.pdf\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/02/16/2\", \"name\": \"[oss-security] 20240216 Re: Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/02/16/3\", \"name\": \"[oss-security] 20240216 Re: Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/\", \"name\": \"FEDORA-2024-2e26eccfcb\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/\", \"name\": \"FEDORA-2024-e24211eff0\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/\", \"name\": \"FEDORA-2024-21310568fa\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/02/msg00006.html\", \"name\": \"[debian-lts-announce] 20240221 [SECURITY] [DLA 3736-1] unbound security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG/\", \"name\": \"FEDORA-2024-b0f9656a76\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7/\", \"name\": \"FEDORA-2024-4e36df9dfd\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/\", \"name\": \"FEDORA-2024-499b9be35f\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/\", \"name\": \"FEDORA-2024-c36c448396\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ/\", \"name\": \"FEDORA-2024-c967c7d287\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6/\", \"name\": \"FEDORA-2024-e00eceb11c\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/\", \"name\": \"FEDORA-2024-fae88b73eb\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240307-0007/\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/05/msg00011.html\", \"name\": \"[debian-lts-announce] 20240517 [SECURITY] [DLA 3816-1] bind9 security update\", \"tags\": [\"mailing-list\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the \\\"KeyTrap\\\" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2024-06-10T16:14:16.780Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-50387\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-04T18:20:34.949Z\", \"dateReserved\": \"2023-12-07T00:00:00.000Z\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"datePublished\": \"2024-02-14T00:00:00.000Z\", \"assignerShortName\": \"mitre\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

RHSA-2024:0965

Vulnerability from csaf_redhat - Published: 2024-02-26 02:21 - Updated: 2026-04-22 16:36

Summary

Red Hat Security Advisory: unbound security update

Severity

Important

Notes

Topic: An update for unbound is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix(es): * bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387) * bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2023-50387

Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side. This vulnerability applies only for systems where DNSSEC validation is enabled.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 39 products

Product	Version	Remediation
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-50868

A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host. This vulnerability applies only for systems where DNSSEC validation is enabled.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 39 products

Product	Version	Remediation
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

17 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:0965	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-50387	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://www.cve.org/CVERecord?id=CVE-2023-50387	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50387	external
https://blog.powerdns.com/2024/02/13/powerdns-rec…	external
https://kb.isc.org/docs/cve-2023-50387	external
https://www.knot-resolver.cz/2024-02-13-knot-reso…	external
https://access.redhat.com/security/cve/CVE-2023-50868	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://www.cve.org/CVERecord?id=CVE-2023-50868	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50868	external
https://kb.isc.org/docs/cve-2023-50868	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for unbound is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. \n\nSecurity Fix(es):\n\n* bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)\n\n* bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:0965",
        "url": "https://access.redhat.com/errata/RHSA-2024:0965"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2263914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
      },
      {
        "category": "external",
        "summary": "2263917",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0965.json"
      }
    ],
    "title": "Red Hat Security Advisory: unbound security update",
    "tracking": {
      "current_release_date": "2026-04-22T16:36:57+00:00",
      "generator": {
        "date": "2026-04-22T16:36:57+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:0965",
      "initial_release_date": "2024-02-26T02:21:57+00:00",
      "revision_history": [
        {
          "date": "2024-02-26T02:21:57+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-02-26T02:21:57+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-22T16:36:57+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                  "product_id": "AppStream-8.9.0.Z.MAIN",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
                "product": {
                  "name": "python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
                  "product_id": "python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-5.el8_9.2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-5.el8_9.2.aarch64",
                "product": {
                  "name": "unbound-0:1.16.2-5.el8_9.2.aarch64",
                  "product_id": "unbound-0:1.16.2-5.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-5.el8_9.2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
                "product": {
                  "name": "unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
                  "product_id": "unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-5.el8_9.2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
                "product": {
                  "name": "unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
                  "product_id": "unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-5.el8_9.2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
                  "product_id": "unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-5.el8_9.2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-5.el8_9.2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
                  "product_id": "unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-5.el8_9.2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-5.el8_9.2?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
                "product": {
                  "name": "python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_id": "python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-5.el8_9.2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-5.el8_9.2.ppc64le",
                "product": {
                  "name": "unbound-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_id": "unbound-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-5.el8_9.2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
                "product": {
                  "name": "unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_id": "unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-5.el8_9.2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
                "product": {
                  "name": "unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_id": "unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-5.el8_9.2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_id": "unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-5.el8_9.2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-5.el8_9.2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_id": "unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-5.el8_9.2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-5.el8_9.2?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
                "product": {
                  "name": "python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
                  "product_id": "python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-5.el8_9.2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-5.el8_9.2.x86_64",
                "product": {
                  "name": "unbound-0:1.16.2-5.el8_9.2.x86_64",
                  "product_id": "unbound-0:1.16.2-5.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-5.el8_9.2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
                "product": {
                  "name": "unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
                  "product_id": "unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-5.el8_9.2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
                "product": {
                  "name": "unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
                  "product_id": "unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-5.el8_9.2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
                  "product_id": "unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-5.el8_9.2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-5.el8_9.2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
                  "product_id": "unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-5.el8_9.2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-5.el8_9.2?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-5.el8_9.2.i686",
                "product": {
                  "name": "unbound-devel-0:1.16.2-5.el8_9.2.i686",
                  "product_id": "unbound-devel-0:1.16.2-5.el8_9.2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-5.el8_9.2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-5.el8_9.2.i686",
                "product": {
                  "name": "unbound-libs-0:1.16.2-5.el8_9.2.i686",
                  "product_id": "unbound-libs-0:1.16.2-5.el8_9.2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-5.el8_9.2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
                  "product_id": "unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-5.el8_9.2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-5.el8_9.2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
                  "product_id": "unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-5.el8_9.2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-5.el8_9.2?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-5.el8_9.2.s390x",
                "product": {
                  "name": "python3-unbound-0:1.16.2-5.el8_9.2.s390x",
                  "product_id": "python3-unbound-0:1.16.2-5.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-5.el8_9.2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-5.el8_9.2.s390x",
                "product": {
                  "name": "unbound-0:1.16.2-5.el8_9.2.s390x",
                  "product_id": "unbound-0:1.16.2-5.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-5.el8_9.2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-5.el8_9.2.s390x",
                "product": {
                  "name": "unbound-devel-0:1.16.2-5.el8_9.2.s390x",
                  "product_id": "unbound-devel-0:1.16.2-5.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-5.el8_9.2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-5.el8_9.2.s390x",
                "product": {
                  "name": "unbound-libs-0:1.16.2-5.el8_9.2.s390x",
                  "product_id": "unbound-libs-0:1.16.2-5.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-5.el8_9.2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
                  "product_id": "unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-5.el8_9.2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-5.el8_9.2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
                  "product_id": "unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-5.el8_9.2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-5.el8_9.2?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-5.el8_9.2.src",
                "product": {
                  "name": "unbound-0:1.16.2-5.el8_9.2.src",
                  "product_id": "unbound-0:1.16.2-5.el8_9.2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-5.el8_9.2?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-5.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.aarch64"
        },
        "product_reference": "python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-5.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.ppc64le"
        },
        "product_reference": "python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-5.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.s390x"
        },
        "product_reference": "python3-unbound-0:1.16.2-5.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-5.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.x86_64"
        },
        "product_reference": "python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-5.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.aarch64"
        },
        "product_reference": "unbound-0:1.16.2-5.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-5.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.ppc64le"
        },
        "product_reference": "unbound-0:1.16.2-5.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-5.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.s390x"
        },
        "product_reference": "unbound-0:1.16.2-5.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-5.el8_9.2.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.src"
        },
        "product_reference": "unbound-0:1.16.2-5.el8_9.2.src",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-5.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.x86_64"
        },
        "product_reference": "unbound-0:1.16.2-5.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.i686"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.i686"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.s390x"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-5.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.aarch64"
        },
        "product_reference": "unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-5.el8_9.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.i686"
        },
        "product_reference": "unbound-devel-0:1.16.2-5.el8_9.2.i686",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-5.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.ppc64le"
        },
        "product_reference": "unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-5.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.s390x"
        },
        "product_reference": "unbound-devel-0:1.16.2-5.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-5.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.x86_64"
        },
        "product_reference": "unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-5.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.aarch64"
        },
        "product_reference": "unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-5.el8_9.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.i686"
        },
        "product_reference": "unbound-libs-0:1.16.2-5.el8_9.2.i686",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-5.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.ppc64le"
        },
        "product_reference": "unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-5.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.s390x"
        },
        "product_reference": "unbound-libs-0:1.16.2-5.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-5.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.x86_64"
        },
        "product_reference": "unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-50387",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263914"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in DNSSEC-validating resolvers is of important severity because it can lead to uncontrolled CPU consumption, resulting in a Denial of Service (DoS). By exploiting this flaw, attackers can send specially crafted DNS responses that cause the resolver to enter a state of excessive resource utilization. This can severely impact the availability and performance of DNS services, affecting not only the targeted resolver but potentially cascading to other dependent systems and services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.src",
          "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263914",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50387",
          "url": "https://kb.isc.org/docs/cve-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-02-26T02:21:57+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:0965"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator"
    },
    {
      "cve": "CVE-2023-50868",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263917"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in BIND9 that leads to CPU exhaustion through a flood of DNSSEC responses with NSEC3 signatures is a important severity issue due to its potential to induce a Denial of Service (DoS) condition on affected resolvers. By exploiting this flaw, an attacker can overwhelm a DNSSEC-enabled resolver with computationally intensive tasks, depleting CPU resources and disrupting normal DNS operations. This can result in significant service outages, affecting the resolver\u0027s ability to process legitimate DNS queries and thereby compromising network availability and reliability. The impact is exacerbated in high-traffic environments or where DNSSEC validation is extensively employed, making prompt remediation essential to prevent operational disruptions and maintain DNS infrastructure integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.src",
          "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263917",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50868",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50868",
          "url": "https://kb.isc.org/docs/cve-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-02-26T02:21:57+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:0965"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:unbound-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debuginfo-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-debugsource-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-devel-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-0:1.16.2-5.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.i686",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-5.el8_9.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources"
    }
  ]
}

RHSA-2024:0977

Vulnerability from csaf_redhat - Published: 2024-02-26 08:46 - Updated: 2026-04-22 16:36

Summary

Red Hat Security Advisory: unbound security update

Severity

Important

Notes

Topic: An update for unbound is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2023-50387

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 78 products

Product	Version	Remediation
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-50868

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 78 products

Product	Version	Remediation
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

17 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:0977	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-50387	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://www.cve.org/CVERecord?id=CVE-2023-50387	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50387	external
https://blog.powerdns.com/2024/02/13/powerdns-rec…	external
https://kb.isc.org/docs/cve-2023-50387	external
https://www.knot-resolver.cz/2024-02-13-knot-reso…	external
https://access.redhat.com/security/cve/CVE-2023-50868	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://www.cve.org/CVERecord?id=CVE-2023-50868	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50868	external
https://kb.isc.org/docs/cve-2023-50868	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for unbound is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. \n\nSecurity Fix(es):\n\n* bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)\n\n* bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:0977",
        "url": "https://access.redhat.com/errata/RHSA-2024:0977"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2263914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
      },
      {
        "category": "external",
        "summary": "2263917",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0977.json"
      }
    ],
    "title": "Red Hat Security Advisory: unbound security update",
    "tracking": {
      "current_release_date": "2026-04-22T16:36:59+00:00",
      "generator": {
        "date": "2026-04-22T16:36:59+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:0977",
      "initial_release_date": "2024-02-26T08:46:52+00:00",
      "revision_history": [
        {
          "date": "2024-02-26T08:46:52+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-02-26T08:46:52+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-22T16:36:59+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                  "product_id": "AppStream-9.3.0.Z.MAIN",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat CodeReady Linux Builder (v. 9)",
                "product": {
                  "name": "Red Hat CodeReady Linux Builder (v. 9)",
                  "product_id": "CRB-9.3.0.Z.MAIN",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::crb"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
                "product": {
                  "name": "python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
                  "product_id": "python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-3.el9_3.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-3.el9_3.1.aarch64",
                "product": {
                  "name": "unbound-0:1.16.2-3.el9_3.1.aarch64",
                  "product_id": "unbound-0:1.16.2-3.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-3.el9_3.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
                "product": {
                  "name": "unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
                  "product_id": "unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-3.el9_3.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
                  "product_id": "unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-3.el9_3.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-3.el9_3.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
                  "product_id": "unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-3.el9_3.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-3.el9_3.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
                "product": {
                  "name": "unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
                  "product_id": "unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-3.el9_3.1?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
                "product": {
                  "name": "python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_id": "python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-3.el9_3.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-3.el9_3.1.ppc64le",
                "product": {
                  "name": "unbound-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_id": "unbound-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-3.el9_3.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
                "product": {
                  "name": "unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_id": "unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-3.el9_3.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_id": "unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-3.el9_3.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-3.el9_3.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_id": "unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-3.el9_3.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-3.el9_3.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
                "product": {
                  "name": "unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_id": "unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-3.el9_3.1?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
                "product": {
                  "name": "python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
                  "product_id": "python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-3.el9_3.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-3.el9_3.1.x86_64",
                "product": {
                  "name": "unbound-0:1.16.2-3.el9_3.1.x86_64",
                  "product_id": "unbound-0:1.16.2-3.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-3.el9_3.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
                "product": {
                  "name": "unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
                  "product_id": "unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-3.el9_3.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
                  "product_id": "unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-3.el9_3.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-3.el9_3.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
                  "product_id": "unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-3.el9_3.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-3.el9_3.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
                "product": {
                  "name": "unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
                  "product_id": "unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-3.el9_3.1?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-3.el9_3.1.i686",
                "product": {
                  "name": "unbound-libs-0:1.16.2-3.el9_3.1.i686",
                  "product_id": "unbound-libs-0:1.16.2-3.el9_3.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-3.el9_3.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
                  "product_id": "unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-3.el9_3.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-3.el9_3.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
                  "product_id": "unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-3.el9_3.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-3.el9_3.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-3.el9_3.1.i686",
                "product": {
                  "name": "unbound-devel-0:1.16.2-3.el9_3.1.i686",
                  "product_id": "unbound-devel-0:1.16.2-3.el9_3.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-3.el9_3.1?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-3.el9_3.1.s390x",
                "product": {
                  "name": "python3-unbound-0:1.16.2-3.el9_3.1.s390x",
                  "product_id": "python3-unbound-0:1.16.2-3.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-3.el9_3.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-3.el9_3.1.s390x",
                "product": {
                  "name": "unbound-0:1.16.2-3.el9_3.1.s390x",
                  "product_id": "unbound-0:1.16.2-3.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-3.el9_3.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-3.el9_3.1.s390x",
                "product": {
                  "name": "unbound-libs-0:1.16.2-3.el9_3.1.s390x",
                  "product_id": "unbound-libs-0:1.16.2-3.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-3.el9_3.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
                  "product_id": "unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-3.el9_3.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-3.el9_3.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
                  "product_id": "unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-3.el9_3.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-3.el9_3.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-3.el9_3.1.s390x",
                "product": {
                  "name": "unbound-devel-0:1.16.2-3.el9_3.1.s390x",
                  "product_id": "unbound-devel-0:1.16.2-3.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-3.el9_3.1?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-3.el9_3.1.src",
                "product": {
                  "name": "unbound-0:1.16.2-3.el9_3.1.src",
                  "product_id": "unbound-0:1.16.2-3.el9_3.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-3.el9_3.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_3.1.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_3.1.src",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_3.1.src as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_3.1.src",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 9)",
          "product_id": "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
        "relates_to_product_reference": "CRB-9.3.0.Z.MAIN"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-50387",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263914"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in DNSSEC-validating resolvers is of important severity because it can lead to uncontrolled CPU consumption, resulting in a Denial of Service (DoS). By exploiting this flaw, attackers can send specially crafted DNS responses that cause the resolver to enter a state of excessive resource utilization. This can severely impact the availability and performance of DNS services, affecting not only the targeted resolver but potentially cascading to other dependent systems and services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
          "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
          "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263914",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50387",
          "url": "https://kb.isc.org/docs/cve-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-02-26T08:46:52+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:0977"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator"
    },
    {
      "cve": "CVE-2023-50868",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263917"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in BIND9 that leads to CPU exhaustion through a flood of DNSSEC responses with NSEC3 signatures is a important severity issue due to its potential to induce a Denial of Service (DoS) condition on affected resolvers. By exploiting this flaw, an attacker can overwhelm a DNSSEC-enabled resolver with computationally intensive tasks, depleting CPU resources and disrupting normal DNS operations. This can result in significant service outages, affecting the resolver\u0027s ability to process legitimate DNS queries and thereby compromising network availability and reliability. The impact is exacerbated in high-traffic environments or where DNSSEC validation is extensively employed, making prompt remediation essential to prevent operational disruptions and maintain DNS infrastructure integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
          "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
          "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
          "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
          "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
          "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
          "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
          "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263917",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50868",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50868",
          "url": "https://kb.isc.org/docs/cve-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-02-26T08:46:52+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:0977"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:python3-unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.src",
            "CRB-9.3.0.Z.MAIN:unbound-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debuginfo-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-debugsource-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-devel-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-0:1.16.2-3.el9_3.1.x86_64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.aarch64",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.i686",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.ppc64le",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.s390x",
            "CRB-9.3.0.Z.MAIN:unbound-libs-debuginfo-0:1.16.2-3.el9_3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources"
    }
  ]
}

RHSA-2024:0981

Vulnerability from csaf_redhat - Published: 2024-02-26 19:19 - Updated: 2026-04-22 16:36

Summary

Red Hat Security Advisory: unbound security update

Severity

Important

Notes

Topic: An update for unbound is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2023-50387

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 78 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-50868

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 78 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

17 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:0981	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-50387	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://www.cve.org/CVERecord?id=CVE-2023-50387	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50387	external
https://blog.powerdns.com/2024/02/13/powerdns-rec…	external
https://kb.isc.org/docs/cve-2023-50387	external
https://www.knot-resolver.cz/2024-02-13-knot-reso…	external
https://access.redhat.com/security/cve/CVE-2023-50868	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://www.cve.org/CVERecord?id=CVE-2023-50868	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50868	external
https://kb.isc.org/docs/cve-2023-50868	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for unbound is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. \n\nSecurity Fix(es):\n\n* bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)\n\n* bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:0981",
        "url": "https://access.redhat.com/errata/RHSA-2024:0981"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2263914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
      },
      {
        "category": "external",
        "summary": "2263917",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0981.json"
      }
    ],
    "title": "Red Hat Security Advisory: unbound security update",
    "tracking": {
      "current_release_date": "2026-04-22T16:36:57+00:00",
      "generator": {
        "date": "2026-04-22T16:36:57+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:0981",
      "initial_release_date": "2024-02-26T19:19:59+00:00",
      "revision_history": [
        {
          "date": "2024-02-26T19:19:59+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-02-26T19:19:59+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-22T16:36:57+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
                  "product_id": "AppStream-9.2.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:9.2::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat CodeReady Linux Builder EUS (v.9.2)",
                "product": {
                  "name": "Red Hat CodeReady Linux Builder EUS (v.9.2)",
                  "product_id": "CRB-9.2.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:9.2::crb"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
                "product": {
                  "name": "unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
                  "product_id": "unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-3.el9_2.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
                  "product_id": "unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-3.el9_2.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-3.el9_2.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
                  "product_id": "unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-3.el9_2.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-3.el9_2.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
                "product": {
                  "name": "python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
                  "product_id": "python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-3.el9_2.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-3.el9_2.1.aarch64",
                "product": {
                  "name": "unbound-0:1.16.2-3.el9_2.1.aarch64",
                  "product_id": "unbound-0:1.16.2-3.el9_2.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-3.el9_2.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
                "product": {
                  "name": "unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
                  "product_id": "unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-3.el9_2.1?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
                "product": {
                  "name": "unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_id": "unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-3.el9_2.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_id": "unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-3.el9_2.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-3.el9_2.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_id": "unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-3.el9_2.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-3.el9_2.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
                "product": {
                  "name": "python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_id": "python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-3.el9_2.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-3.el9_2.1.ppc64le",
                "product": {
                  "name": "unbound-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_id": "unbound-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-3.el9_2.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
                "product": {
                  "name": "unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_id": "unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-3.el9_2.1?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-3.el9_2.1.i686",
                "product": {
                  "name": "unbound-devel-0:1.16.2-3.el9_2.1.i686",
                  "product_id": "unbound-devel-0:1.16.2-3.el9_2.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-3.el9_2.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
                  "product_id": "unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-3.el9_2.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-3.el9_2.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
                  "product_id": "unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-3.el9_2.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-3.el9_2.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-3.el9_2.1.i686",
                "product": {
                  "name": "unbound-libs-0:1.16.2-3.el9_2.1.i686",
                  "product_id": "unbound-libs-0:1.16.2-3.el9_2.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-3.el9_2.1?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
                "product": {
                  "name": "unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
                  "product_id": "unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-3.el9_2.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
                  "product_id": "unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-3.el9_2.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-3.el9_2.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
                  "product_id": "unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-3.el9_2.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-3.el9_2.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
                "product": {
                  "name": "python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
                  "product_id": "python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-3.el9_2.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-3.el9_2.1.x86_64",
                "product": {
                  "name": "unbound-0:1.16.2-3.el9_2.1.x86_64",
                  "product_id": "unbound-0:1.16.2-3.el9_2.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-3.el9_2.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
                "product": {
                  "name": "unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
                  "product_id": "unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-3.el9_2.1?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-3.el9_2.1.s390x",
                "product": {
                  "name": "unbound-devel-0:1.16.2-3.el9_2.1.s390x",
                  "product_id": "unbound-devel-0:1.16.2-3.el9_2.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-3.el9_2.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
                  "product_id": "unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-3.el9_2.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-3.el9_2.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
                  "product_id": "unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-3.el9_2.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-3.el9_2.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-3.el9_2.1.s390x",
                "product": {
                  "name": "python3-unbound-0:1.16.2-3.el9_2.1.s390x",
                  "product_id": "python3-unbound-0:1.16.2-3.el9_2.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-3.el9_2.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-3.el9_2.1.s390x",
                "product": {
                  "name": "unbound-0:1.16.2-3.el9_2.1.s390x",
                  "product_id": "unbound-0:1.16.2-3.el9_2.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-3.el9_2.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-3.el9_2.1.s390x",
                "product": {
                  "name": "unbound-libs-0:1.16.2-3.el9_2.1.s390x",
                  "product_id": "unbound-libs-0:1.16.2-3.el9_2.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-3.el9_2.1?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-3.el9_2.1.src",
                "product": {
                  "name": "unbound-0:1.16.2-3.el9_2.1.src",
                  "product_id": "unbound-0:1.16.2-3.el9_2.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-3.el9_2.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_2.1.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_2.1.src",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_2.1.src as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_2.1.src",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.2)",
          "product_id": "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
        "relates_to_product_reference": "CRB-9.2.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-50387",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263914"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in DNSSEC-validating resolvers is of important severity because it can lead to uncontrolled CPU consumption, resulting in a Denial of Service (DoS). By exploiting this flaw, attackers can send specially crafted DNS responses that cause the resolver to enter a state of excessive resource utilization. This can severely impact the availability and performance of DNS services, affecting not only the targeted resolver but potentially cascading to other dependent systems and services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
          "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
          "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263914",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50387",
          "url": "https://kb.isc.org/docs/cve-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-02-26T19:19:59+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:0981"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator"
    },
    {
      "cve": "CVE-2023-50868",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263917"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in BIND9 that leads to CPU exhaustion through a flood of DNSSEC responses with NSEC3 signatures is a important severity issue due to its potential to induce a Denial of Service (DoS) condition on affected resolvers. By exploiting this flaw, an attacker can overwhelm a DNSSEC-enabled resolver with computationally intensive tasks, depleting CPU resources and disrupting normal DNS operations. This can result in significant service outages, affecting the resolver\u0027s ability to process legitimate DNS queries and thereby compromising network availability and reliability. The impact is exacerbated in high-traffic environments or where DNSSEC validation is extensively employed, making prompt remediation essential to prevent operational disruptions and maintain DNS infrastructure integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
          "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
          "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
          "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
          "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
          "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
          "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
          "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
          "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263917",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50868",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50868",
          "url": "https://kb.isc.org/docs/cve-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-02-26T19:19:59+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:0981"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "AppStream-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "AppStream-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.src",
            "CRB-9.2.0.Z.EUS:unbound-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debuginfo-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-debugsource-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-devel-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-0:1.16.2-3.el9_2.1.x86_64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.aarch64",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.i686",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.ppc64le",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.s390x",
            "CRB-9.2.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-3.el9_2.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources"
    }
  ]
}

RHSA-2024:0982

Vulnerability from csaf_redhat - Published: 2024-02-27 00:30 - Updated: 2026-04-22 16:36

Summary

Red Hat Security Advisory: unbound security update

Severity

Important

Notes

Topic: An update for unbound is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2023-50387

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 39 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-50868

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 39 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

17 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:0982	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-50387	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://www.cve.org/CVERecord?id=CVE-2023-50387	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50387	external
https://blog.powerdns.com/2024/02/13/powerdns-rec…	external
https://kb.isc.org/docs/cve-2023-50387	external
https://www.knot-resolver.cz/2024-02-13-knot-reso…	external
https://access.redhat.com/security/cve/CVE-2023-50868	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://www.cve.org/CVERecord?id=CVE-2023-50868	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50868	external
https://kb.isc.org/docs/cve-2023-50868	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for unbound is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. \n\nSecurity Fix(es):\n\n* bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)\n\n* bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:0982",
        "url": "https://access.redhat.com/errata/RHSA-2024:0982"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2263914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
      },
      {
        "category": "external",
        "summary": "2263917",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0982.json"
      }
    ],
    "title": "Red Hat Security Advisory: unbound security update",
    "tracking": {
      "current_release_date": "2026-04-22T16:36:58+00:00",
      "generator": {
        "date": "2026-04-22T16:36:58+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:0982",
      "initial_release_date": "2024-02-27T00:30:59+00:00",
      "revision_history": [
        {
          "date": "2024-02-27T00:30:59+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-02-27T00:30:59+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-22T16:36:58+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.8.8)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.8.8)",
                  "product_id": "AppStream-8.8.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:8.8::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
                "product": {
                  "name": "python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
                  "product_id": "python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-5.el8_8.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-5.el8_8.1.aarch64",
                "product": {
                  "name": "unbound-0:1.16.2-5.el8_8.1.aarch64",
                  "product_id": "unbound-0:1.16.2-5.el8_8.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-5.el8_8.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
                "product": {
                  "name": "unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
                  "product_id": "unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-5.el8_8.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
                "product": {
                  "name": "unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
                  "product_id": "unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-5.el8_8.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
                  "product_id": "unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-5.el8_8.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-5.el8_8.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
                  "product_id": "unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-5.el8_8.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-5.el8_8.1?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
                "product": {
                  "name": "python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_id": "python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-5.el8_8.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-5.el8_8.1.ppc64le",
                "product": {
                  "name": "unbound-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_id": "unbound-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-5.el8_8.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
                "product": {
                  "name": "unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_id": "unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-5.el8_8.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
                "product": {
                  "name": "unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_id": "unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-5.el8_8.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_id": "unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-5.el8_8.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-5.el8_8.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_id": "unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-5.el8_8.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-5.el8_8.1?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
                "product": {
                  "name": "python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
                  "product_id": "python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-5.el8_8.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-5.el8_8.1.x86_64",
                "product": {
                  "name": "unbound-0:1.16.2-5.el8_8.1.x86_64",
                  "product_id": "unbound-0:1.16.2-5.el8_8.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-5.el8_8.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
                "product": {
                  "name": "unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
                  "product_id": "unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-5.el8_8.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
                "product": {
                  "name": "unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
                  "product_id": "unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-5.el8_8.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
                  "product_id": "unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-5.el8_8.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-5.el8_8.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
                  "product_id": "unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-5.el8_8.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-5.el8_8.1?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-5.el8_8.1.i686",
                "product": {
                  "name": "unbound-devel-0:1.16.2-5.el8_8.1.i686",
                  "product_id": "unbound-devel-0:1.16.2-5.el8_8.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-5.el8_8.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-5.el8_8.1.i686",
                "product": {
                  "name": "unbound-libs-0:1.16.2-5.el8_8.1.i686",
                  "product_id": "unbound-libs-0:1.16.2-5.el8_8.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-5.el8_8.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
                  "product_id": "unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-5.el8_8.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-5.el8_8.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
                  "product_id": "unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-5.el8_8.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-5.el8_8.1?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-unbound-0:1.16.2-5.el8_8.1.s390x",
                "product": {
                  "name": "python3-unbound-0:1.16.2-5.el8_8.1.s390x",
                  "product_id": "python3-unbound-0:1.16.2-5.el8_8.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound@1.16.2-5.el8_8.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-5.el8_8.1.s390x",
                "product": {
                  "name": "unbound-0:1.16.2-5.el8_8.1.s390x",
                  "product_id": "unbound-0:1.16.2-5.el8_8.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-5.el8_8.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.16.2-5.el8_8.1.s390x",
                "product": {
                  "name": "unbound-devel-0:1.16.2-5.el8_8.1.s390x",
                  "product_id": "unbound-devel-0:1.16.2-5.el8_8.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.16.2-5.el8_8.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.16.2-5.el8_8.1.s390x",
                "product": {
                  "name": "unbound-libs-0:1.16.2-5.el8_8.1.s390x",
                  "product_id": "unbound-libs-0:1.16.2-5.el8_8.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.16.2-5.el8_8.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
                "product": {
                  "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
                  "product_id": "unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debugsource@1.16.2-5.el8_8.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
                "product": {
                  "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
                  "product_id": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-unbound-debuginfo@1.16.2-5.el8_8.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
                "product": {
                  "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
                  "product_id": "unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.16.2-5.el8_8.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
                "product": {
                  "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
                  "product_id": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs-debuginfo@1.16.2-5.el8_8.1?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-0:1.16.2-5.el8_8.1.src",
                "product": {
                  "name": "unbound-0:1.16.2-5.el8_8.1.src",
                  "product_id": "unbound-0:1.16.2-5.el8_8.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.16.2-5.el8_8.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-5.el8_8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.aarch64"
        },
        "product_reference": "python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-5.el8_8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.ppc64le"
        },
        "product_reference": "python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-5.el8_8.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.s390x"
        },
        "product_reference": "python3-unbound-0:1.16.2-5.el8_8.1.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-0:1.16.2-5.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.x86_64"
        },
        "product_reference": "python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64"
        },
        "product_reference": "python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-5.el8_8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.aarch64"
        },
        "product_reference": "unbound-0:1.16.2-5.el8_8.1.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-5.el8_8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.ppc64le"
        },
        "product_reference": "unbound-0:1.16.2-5.el8_8.1.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-5.el8_8.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.s390x"
        },
        "product_reference": "unbound-0:1.16.2-5.el8_8.1.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-5.el8_8.1.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.src"
        },
        "product_reference": "unbound-0:1.16.2-5.el8_8.1.src",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.16.2-5.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.x86_64"
        },
        "product_reference": "unbound-0:1.16.2-5.el8_8.1.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.i686"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64"
        },
        "product_reference": "unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.i686"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.s390x"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64"
        },
        "product_reference": "unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-5.el8_8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.aarch64"
        },
        "product_reference": "unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-5.el8_8.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.i686"
        },
        "product_reference": "unbound-devel-0:1.16.2-5.el8_8.1.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-5.el8_8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.ppc64le"
        },
        "product_reference": "unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-5.el8_8.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.s390x"
        },
        "product_reference": "unbound-devel-0:1.16.2-5.el8_8.1.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.16.2-5.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.x86_64"
        },
        "product_reference": "unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-5.el8_8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.aarch64"
        },
        "product_reference": "unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-5.el8_8.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.i686"
        },
        "product_reference": "unbound-libs-0:1.16.2-5.el8_8.1.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-5.el8_8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.ppc64le"
        },
        "product_reference": "unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-5.el8_8.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.s390x"
        },
        "product_reference": "unbound-libs-0:1.16.2-5.el8_8.1.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.16.2-5.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.x86_64"
        },
        "product_reference": "unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64"
        },
        "product_reference": "unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-50387",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263914"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in DNSSEC-validating resolvers is of important severity because it can lead to uncontrolled CPU consumption, resulting in a Denial of Service (DoS). By exploiting this flaw, attackers can send specially crafted DNS responses that cause the resolver to enter a state of excessive resource utilization. This can severely impact the availability and performance of DNS services, affecting not only the targeted resolver but potentially cascading to other dependent systems and services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.src",
          "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263914",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50387",
          "url": "https://kb.isc.org/docs/cve-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-02-27T00:30:59+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.src",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:0982"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.src",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.src",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator"
    },
    {
      "cve": "CVE-2023-50868",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263917"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in BIND9 that leads to CPU exhaustion through a flood of DNSSEC responses with NSEC3 signatures is a important severity issue due to its potential to induce a Denial of Service (DoS) condition on affected resolvers. By exploiting this flaw, an attacker can overwhelm a DNSSEC-enabled resolver with computationally intensive tasks, depleting CPU resources and disrupting normal DNS operations. This can result in significant service outages, affecting the resolver\u0027s ability to process legitimate DNS queries and thereby compromising network availability and reliability. The impact is exacerbated in high-traffic environments or where DNSSEC validation is extensively employed, making prompt remediation essential to prevent operational disruptions and maintain DNS infrastructure integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.src",
          "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
          "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
          "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
          "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
          "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
          "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263917",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50868",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50868",
          "url": "https://kb.isc.org/docs/cve-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-02-27T00:30:59+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.src",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:0982"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.src",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:python3-unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.src",
            "AppStream-8.8.0.Z.EUS:unbound-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debuginfo-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-debugsource-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-devel-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-0:1.16.2-5.el8_8.1.x86_64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.aarch64",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.i686",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.ppc64le",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.s390x",
            "AppStream-8.8.0.Z.EUS:unbound-libs-debuginfo-0:1.16.2-5.el8_8.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources"
    }
  ]
}

RHSA-2024:11003

Vulnerability from csaf_redhat - Published: 2024-12-12 14:15 - Updated: 2026-04-22 16:36

Summary

Red Hat Security Advisory: unbound security update

Severity

Important

Notes

Topic: An update for unbound is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2023-50387

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 60 products

Product	Version	Remediation
Unresolved product id: 7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-0:1.6.6-5.el7_9.1.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-50868

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 60 products

Product	Version	Remediation
Unresolved product id: 7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-0:1.6.6-5.el7_9.1.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.src	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

17 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:11003	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-50387	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://www.cve.org/CVERecord?id=CVE-2023-50387	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50387	external
https://blog.powerdns.com/2024/02/13/powerdns-rec…	external
https://kb.isc.org/docs/cve-2023-50387	external
https://www.knot-resolver.cz/2024-02-13-knot-reso…	external
https://access.redhat.com/security/cve/CVE-2023-50868	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://www.cve.org/CVERecord?id=CVE-2023-50868	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50868	external
https://kb.isc.org/docs/cve-2023-50868	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for unbound is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. \n\nSecurity Fix(es):\n\n* bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)\n\n* bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:11003",
        "url": "https://access.redhat.com/errata/RHSA-2024:11003"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2263914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
      },
      {
        "category": "external",
        "summary": "2263917",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_11003.json"
      }
    ],
    "title": "Red Hat Security Advisory: unbound security update",
    "tracking": {
      "current_release_date": "2026-04-22T16:36:58+00:00",
      "generator": {
        "date": "2026-04-22T16:36:58+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:11003",
      "initial_release_date": "2024-12-12T14:15:59+00:00",
      "revision_history": [
        {
          "date": "2024-12-12T14:15:59+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-12-12T14:15:59+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-22T16:36:58+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server (v. 7 ELS)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server (v. 7 ELS)",
                  "product_id": "7Server-ELS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_els:7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
                  "product_id": "7Server-optional-ELS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_els:7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-0:1.6.6-5.el7_9.1.src",
                "product": {
                  "name": "unbound-0:1.6.6-5.el7_9.1.src",
                  "product_id": "unbound-0:1.6.6-5.el7_9.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.6.6-5.el7_9.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-0:1.6.6-5.el7_9.1.x86_64",
                "product": {
                  "name": "unbound-0:1.6.6-5.el7_9.1.x86_64",
                  "product_id": "unbound-0:1.6.6-5.el7_9.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.6.6-5.el7_9.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
                "product": {
                  "name": "unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
                  "product_id": "unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.6.6-5.el7_9.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
                "product": {
                  "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
                  "product_id": "unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.6.6-5.el7_9.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
                "product": {
                  "name": "unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
                  "product_id": "unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.6.6-5.el7_9.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-python-0:1.6.6-5.el7_9.1.x86_64",
                "product": {
                  "name": "unbound-python-0:1.6.6-5.el7_9.1.x86_64",
                  "product_id": "unbound-python-0:1.6.6-5.el7_9.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-python@1.6.6-5.el7_9.1?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.6.6-5.el7_9.1.i686",
                "product": {
                  "name": "unbound-libs-0:1.6.6-5.el7_9.1.i686",
                  "product_id": "unbound-libs-0:1.6.6-5.el7_9.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.6.6-5.el7_9.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
                "product": {
                  "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
                  "product_id": "unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.6.6-5.el7_9.1?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.6.6-5.el7_9.1.i686",
                "product": {
                  "name": "unbound-devel-0:1.6.6-5.el7_9.1.i686",
                  "product_id": "unbound-devel-0:1.6.6-5.el7_9.1.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.6.6-5.el7_9.1?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-0:1.6.6-5.el7_9.1.ppc64le",
                "product": {
                  "name": "unbound-0:1.6.6-5.el7_9.1.ppc64le",
                  "product_id": "unbound-0:1.6.6-5.el7_9.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.6.6-5.el7_9.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
                "product": {
                  "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
                  "product_id": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.6.6-5.el7_9.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
                "product": {
                  "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
                  "product_id": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.6.6-5.el7_9.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
                "product": {
                  "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
                  "product_id": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.6.6-5.el7_9.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
                "product": {
                  "name": "unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
                  "product_id": "unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-python@1.6.6-5.el7_9.1?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-0:1.6.6-5.el7_9.1.ppc64",
                "product": {
                  "name": "unbound-0:1.6.6-5.el7_9.1.ppc64",
                  "product_id": "unbound-0:1.6.6-5.el7_9.1.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.6.6-5.el7_9.1?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
                "product": {
                  "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
                  "product_id": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.6.6-5.el7_9.1?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
                "product": {
                  "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
                  "product_id": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.6.6-5.el7_9.1?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
                "product": {
                  "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
                  "product_id": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.6.6-5.el7_9.1?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-python-0:1.6.6-5.el7_9.1.ppc64",
                "product": {
                  "name": "unbound-python-0:1.6.6-5.el7_9.1.ppc64",
                  "product_id": "unbound-python-0:1.6.6-5.el7_9.1.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-python@1.6.6-5.el7_9.1?arch=ppc64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc",
                "product": {
                  "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc",
                  "product_id": "unbound-libs-0:1.6.6-5.el7_9.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.6.6-5.el7_9.1?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
                "product": {
                  "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
                  "product_id": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.6.6-5.el7_9.1?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc",
                "product": {
                  "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc",
                  "product_id": "unbound-devel-0:1.6.6-5.el7_9.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.6.6-5.el7_9.1?arch=ppc"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-0:1.6.6-5.el7_9.1.s390x",
                "product": {
                  "name": "unbound-0:1.6.6-5.el7_9.1.s390x",
                  "product_id": "unbound-0:1.6.6-5.el7_9.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound@1.6.6-5.el7_9.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.6.6-5.el7_9.1.s390x",
                "product": {
                  "name": "unbound-libs-0:1.6.6-5.el7_9.1.s390x",
                  "product_id": "unbound-libs-0:1.6.6-5.el7_9.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.6.6-5.el7_9.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
                "product": {
                  "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
                  "product_id": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.6.6-5.el7_9.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.6.6-5.el7_9.1.s390x",
                "product": {
                  "name": "unbound-devel-0:1.6.6-5.el7_9.1.s390x",
                  "product_id": "unbound-devel-0:1.6.6-5.el7_9.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.6.6-5.el7_9.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-python-0:1.6.6-5.el7_9.1.s390x",
                "product": {
                  "name": "unbound-python-0:1.6.6-5.el7_9.1.s390x",
                  "product_id": "unbound-python-0:1.6.6-5.el7_9.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-python@1.6.6-5.el7_9.1?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "unbound-libs-0:1.6.6-5.el7_9.1.s390",
                "product": {
                  "name": "unbound-libs-0:1.6.6-5.el7_9.1.s390",
                  "product_id": "unbound-libs-0:1.6.6-5.el7_9.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-libs@1.6.6-5.el7_9.1?arch=s390"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
                "product": {
                  "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
                  "product_id": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-debuginfo@1.6.6-5.el7_9.1?arch=s390"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "unbound-devel-0:1.6.6-5.el7_9.1.s390",
                "product": {
                  "name": "unbound-devel-0:1.6.6-5.el7_9.1.s390",
                  "product_id": "unbound-devel-0:1.6.6-5.el7_9.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/unbound-devel@1.6.6-5.el7_9.1?arch=s390"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.6.6-5.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64"
        },
        "product_reference": "unbound-0:1.6.6-5.el7_9.1.ppc64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.6.6-5.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le"
        },
        "product_reference": "unbound-0:1.6.6-5.el7_9.1.ppc64le",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.6.6-5.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.s390x"
        },
        "product_reference": "unbound-0:1.6.6-5.el7_9.1.s390x",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.6.6-5.el7_9.1.src as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.src"
        },
        "product_reference": "unbound-0:1.6.6-5.el7_9.1.src",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.6.6-5.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64"
        },
        "product_reference": "unbound-0:1.6.6-5.el7_9.1.x86_64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.i686",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.ppc",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.s390",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.s390x",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.i686",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.ppc",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.s390",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.s390x",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-python-0:1.6.6-5.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64"
        },
        "product_reference": "unbound-python-0:1.6.6-5.el7_9.1.ppc64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-python-0:1.6.6-5.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le"
        },
        "product_reference": "unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-python-0:1.6.6-5.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x"
        },
        "product_reference": "unbound-python-0:1.6.6-5.el7_9.1.s390x",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-python-0:1.6.6-5.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64"
        },
        "product_reference": "unbound-python-0:1.6.6-5.el7_9.1.x86_64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.6.6-5.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64"
        },
        "product_reference": "unbound-0:1.6.6-5.el7_9.1.ppc64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.6.6-5.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le"
        },
        "product_reference": "unbound-0:1.6.6-5.el7_9.1.ppc64le",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.6.6-5.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.s390x"
        },
        "product_reference": "unbound-0:1.6.6-5.el7_9.1.s390x",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.6.6-5.el7_9.1.src as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.src"
        },
        "product_reference": "unbound-0:1.6.6-5.el7_9.1.src",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-0:1.6.6-5.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64"
        },
        "product_reference": "unbound-0:1.6.6-5.el7_9.1.x86_64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64"
        },
        "product_reference": "unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.i686",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.ppc",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.s390",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.s390x",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-devel-0:1.6.6-5.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64"
        },
        "product_reference": "unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.i686",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.ppc",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.s390",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.s390x",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-libs-0:1.6.6-5.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64"
        },
        "product_reference": "unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-python-0:1.6.6-5.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64"
        },
        "product_reference": "unbound-python-0:1.6.6-5.el7_9.1.ppc64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-python-0:1.6.6-5.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le"
        },
        "product_reference": "unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-python-0:1.6.6-5.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x"
        },
        "product_reference": "unbound-python-0:1.6.6-5.el7_9.1.s390x",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "unbound-python-0:1.6.6-5.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64"
        },
        "product_reference": "unbound-python-0:1.6.6-5.el7_9.1.x86_64",
        "relates_to_product_reference": "7Server-optional-ELS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-50387",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263914"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in DNSSEC-validating resolvers is of important severity because it can lead to uncontrolled CPU consumption, resulting in a Denial of Service (DoS). By exploiting this flaw, attackers can send specially crafted DNS responses that cause the resolver to enter a state of excessive resource utilization. This can severely impact the availability and performance of DNS services, affecting not only the targeted resolver but potentially cascading to other dependent systems and services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
          "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.src",
          "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
          "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
          "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.src",
          "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
          "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263914",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50387",
          "url": "https://kb.isc.org/docs/cve-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-12-12T14:15:59+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:11003"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator"
    },
    {
      "cve": "CVE-2023-50868",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263917"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in BIND9 that leads to CPU exhaustion through a flood of DNSSEC responses with NSEC3 signatures is a important severity issue due to its potential to induce a Denial of Service (DoS) condition on affected resolvers. By exploiting this flaw, an attacker can overwhelm a DNSSEC-enabled resolver with computationally intensive tasks, depleting CPU resources and disrupting normal DNS operations. This can result in significant service outages, affecting the resolver\u0027s ability to process legitimate DNS queries and thereby compromising network availability and reliability. The impact is exacerbated in high-traffic environments or where DNSSEC validation is extensively employed, making prompt remediation essential to prevent operational disruptions and maintain DNS infrastructure integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
          "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.src",
          "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
          "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
          "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
          "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
          "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
          "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.src",
          "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
          "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
          "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
          "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
          "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
          "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
          "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
          "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263917",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50868",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50868",
          "url": "https://kb.isc.org/docs/cve-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-12-12T14:15:59+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:11003"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.src",
            "7Server-optional-ELS:unbound-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-debuginfo-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-devel-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.i686",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-libs-0:1.6.6-5.el7_9.1.x86_64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.ppc64le",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.s390x",
            "7Server-optional-ELS:unbound-python-0:1.6.6-5.el7_9.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources"
    }
  ]
}

RHSA-2024:1334

Vulnerability from csaf_redhat - Published: 2024-03-14 15:29 - Updated: 2026-04-22 16:36

Summary

Red Hat Security Advisory: dnsmasq security update

Severity

Important

Notes

Topic: An update for dnsmasq is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server. Security Fix(es): * dnsmasq: bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387) * dnsmasq: bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2023-50387

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-50868

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

17 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:1334	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-50387	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://www.cve.org/CVERecord?id=CVE-2023-50387	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50387	external
https://blog.powerdns.com/2024/02/13/powerdns-rec…	external
https://kb.isc.org/docs/cve-2023-50387	external
https://www.knot-resolver.cz/2024-02-13-knot-reso…	external
https://access.redhat.com/security/cve/CVE-2023-50868	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://www.cve.org/CVERecord?id=CVE-2023-50868	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50868	external
https://kb.isc.org/docs/cve-2023-50868	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for dnsmasq is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.\n\nSecurity Fix(es):\n\n* dnsmasq: bind9: KeyTrap - Extreme CPU consumption in DNSSEC\nvalidator (CVE-2023-50387)\n\n* dnsmasq: bind9: Preparing an NSEC3 closest encloser proof can\nexhaust CPU resources (CVE-2023-50868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:1334",
        "url": "https://access.redhat.com/errata/RHSA-2024:1334"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2263914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
      },
      {
        "category": "external",
        "summary": "2263917",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1334.json"
      }
    ],
    "title": "Red Hat Security Advisory: dnsmasq security update",
    "tracking": {
      "current_release_date": "2026-04-22T16:36:59+00:00",
      "generator": {
        "date": "2026-04-22T16:36:59+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:1334",
      "initial_release_date": "2024-03-14T15:29:28+00:00",
      "revision_history": [
        {
          "date": "2024-03-14T15:29:28+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-03-14T15:29:28+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-22T16:36:59+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                  "product_id": "AppStream-9.3.0.Z.MAIN",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-14.el9_3.1.src",
                "product": {
                  "name": "dnsmasq-0:2.85-14.el9_3.1.src",
                  "product_id": "dnsmasq-0:2.85-14.el9_3.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-14.el9_3.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-14.el9_3.1.aarch64",
                "product": {
                  "name": "dnsmasq-0:2.85-14.el9_3.1.aarch64",
                  "product_id": "dnsmasq-0:2.85-14.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-14.el9_3.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
                  "product_id": "dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-14.el9_3.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
                  "product_id": "dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-14.el9_3.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
                  "product_id": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-14.el9_3.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-14.el9_3.1?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-14.el9_3.1.ppc64le",
                "product": {
                  "name": "dnsmasq-0:2.85-14.el9_3.1.ppc64le",
                  "product_id": "dnsmasq-0:2.85-14.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-14.el9_3.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
                  "product_id": "dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-14.el9_3.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
                  "product_id": "dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-14.el9_3.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
                  "product_id": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-14.el9_3.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-14.el9_3.1?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-14.el9_3.1.x86_64",
                "product": {
                  "name": "dnsmasq-0:2.85-14.el9_3.1.x86_64",
                  "product_id": "dnsmasq-0:2.85-14.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-14.el9_3.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
                  "product_id": "dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-14.el9_3.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
                  "product_id": "dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-14.el9_3.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
                  "product_id": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-14.el9_3.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-14.el9_3.1?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-14.el9_3.1.s390x",
                "product": {
                  "name": "dnsmasq-0:2.85-14.el9_3.1.s390x",
                  "product_id": "dnsmasq-0:2.85-14.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-14.el9_3.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
                  "product_id": "dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-14.el9_3.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
                  "product_id": "dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-14.el9_3.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
                  "product_id": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-14.el9_3.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-14.el9_3.1?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-14.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.aarch64"
        },
        "product_reference": "dnsmasq-0:2.85-14.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-14.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.ppc64le"
        },
        "product_reference": "dnsmasq-0:2.85-14.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-14.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.s390x"
        },
        "product_reference": "dnsmasq-0:2.85-14.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-14.el9_3.1.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.src"
        },
        "product_reference": "dnsmasq-0:2.85-14.el9_3.1.src",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-14.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.x86_64"
        },
        "product_reference": "dnsmasq-0:2.85-14.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-14.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.aarch64"
        },
        "product_reference": "dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le"
        },
        "product_reference": "dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-14.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.s390x"
        },
        "product_reference": "dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-14.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.x86_64"
        },
        "product_reference": "dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64",
        "relates_to_product_reference": "AppStream-9.3.0.Z.MAIN"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-50387",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263914"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in DNSSEC-validating resolvers is of important severity because it can lead to uncontrolled CPU consumption, resulting in a Denial of Service (DoS). By exploiting this flaw, attackers can send specially crafted DNS responses that cause the resolver to enter a state of excessive resource utilization. This can severely impact the availability and performance of DNS services, affecting not only the targeted resolver but potentially cascading to other dependent systems and services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.src",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263914",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50387",
          "url": "https://kb.isc.org/docs/cve-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-14T15:29:28+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1334"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator"
    },
    {
      "cve": "CVE-2023-50868",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263917"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in BIND9 that leads to CPU exhaustion through a flood of DNSSEC responses with NSEC3 signatures is a important severity issue due to its potential to induce a Denial of Service (DoS) condition on affected resolvers. By exploiting this flaw, an attacker can overwhelm a DNSSEC-enabled resolver with computationally intensive tasks, depleting CPU resources and disrupting normal DNS operations. This can result in significant service outages, affecting the resolver\u0027s ability to process legitimate DNS queries and thereby compromising network availability and reliability. The impact is exacerbated in high-traffic environments or where DNSSEC validation is extensively employed, making prompt remediation essential to prevent operational disruptions and maintain DNS infrastructure integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.src",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
          "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263917",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50868",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50868",
          "url": "https://kb.isc.org/docs/cve-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-14T15:29:28+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1334"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.src",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debuginfo-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-debugsource-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-0:2.85-14.el9_3.1.x86_64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.aarch64",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.ppc64le",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.s390x",
            "AppStream-9.3.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.85-14.el9_3.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources"
    }
  ]
}

RHSA-2024:1335

Vulnerability from csaf_redhat - Published: 2024-03-14 15:34 - Updated: 2026-04-22 16:36

Summary

Red Hat Security Advisory: dnsmasq security update

Severity

Important

Notes

Topic: An update for dnsmasq is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2023-50387

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-50868

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

17 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:1335	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-50387	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://www.cve.org/CVERecord?id=CVE-2023-50387	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50387	external
https://blog.powerdns.com/2024/02/13/powerdns-rec…	external
https://kb.isc.org/docs/cve-2023-50387	external
https://www.knot-resolver.cz/2024-02-13-knot-reso…	external
https://access.redhat.com/security/cve/CVE-2023-50868	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://www.cve.org/CVERecord?id=CVE-2023-50868	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50868	external
https://kb.isc.org/docs/cve-2023-50868	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for dnsmasq is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.\n\nSecurity Fix(es):\n\n* dnsmasq: bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)\n\n* dnsmasq: bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:1335",
        "url": "https://access.redhat.com/errata/RHSA-2024:1335"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2263914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
      },
      {
        "category": "external",
        "summary": "2263917",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1335.json"
      }
    ],
    "title": "Red Hat Security Advisory: dnsmasq security update",
    "tracking": {
      "current_release_date": "2026-04-22T16:36:59+00:00",
      "generator": {
        "date": "2026-04-22T16:36:59+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:1335",
      "initial_release_date": "2024-03-14T15:34:48+00:00",
      "revision_history": [
        {
          "date": "2024-03-14T15:34:48+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-03-14T15:34:48+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-22T16:36:59+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                  "product_id": "AppStream-8.9.0.Z.MAIN",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.79-31.el8_9.2.src",
                "product": {
                  "name": "dnsmasq-0:2.79-31.el8_9.2.src",
                  "product_id": "dnsmasq-0:2.79-31.el8_9.2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.79-31.el8_9.2?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.79-31.el8_9.2.aarch64",
                "product": {
                  "name": "dnsmasq-0:2.79-31.el8_9.2.aarch64",
                  "product_id": "dnsmasq-0:2.79-31.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.79-31.el8_9.2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
                "product": {
                  "name": "dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
                  "product_id": "dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.79-31.el8_9.2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
                  "product_id": "dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.79-31.el8_9.2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
                  "product_id": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.79-31.el8_9.2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.79-31.el8_9.2?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.79-31.el8_9.2.ppc64le",
                "product": {
                  "name": "dnsmasq-0:2.79-31.el8_9.2.ppc64le",
                  "product_id": "dnsmasq-0:2.79-31.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.79-31.el8_9.2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
                "product": {
                  "name": "dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
                  "product_id": "dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.79-31.el8_9.2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
                  "product_id": "dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.79-31.el8_9.2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
                  "product_id": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.79-31.el8_9.2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.79-31.el8_9.2?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.79-31.el8_9.2.x86_64",
                "product": {
                  "name": "dnsmasq-0:2.79-31.el8_9.2.x86_64",
                  "product_id": "dnsmasq-0:2.79-31.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.79-31.el8_9.2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
                "product": {
                  "name": "dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
                  "product_id": "dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.79-31.el8_9.2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
                  "product_id": "dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.79-31.el8_9.2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
                  "product_id": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.79-31.el8_9.2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.79-31.el8_9.2?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.79-31.el8_9.2.s390x",
                "product": {
                  "name": "dnsmasq-0:2.79-31.el8_9.2.s390x",
                  "product_id": "dnsmasq-0:2.79-31.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.79-31.el8_9.2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
                "product": {
                  "name": "dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
                  "product_id": "dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.79-31.el8_9.2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
                  "product_id": "dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.79-31.el8_9.2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
                  "product_id": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.79-31.el8_9.2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.79-31.el8_9.2?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.79-31.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.aarch64"
        },
        "product_reference": "dnsmasq-0:2.79-31.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.79-31.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.ppc64le"
        },
        "product_reference": "dnsmasq-0:2.79-31.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.79-31.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.s390x"
        },
        "product_reference": "dnsmasq-0:2.79-31.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.79-31.el8_9.2.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.src"
        },
        "product_reference": "dnsmasq-0:2.79-31.el8_9.2.src",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.79-31.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.x86_64"
        },
        "product_reference": "dnsmasq-0:2.79-31.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64"
        },
        "product_reference": "dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le"
        },
        "product_reference": "dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x"
        },
        "product_reference": "dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64"
        },
        "product_reference": "dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.79-31.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.aarch64"
        },
        "product_reference": "dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le"
        },
        "product_reference": "dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.79-31.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.s390x"
        },
        "product_reference": "dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.79-31.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.x86_64"
        },
        "product_reference": "dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64",
        "relates_to_product_reference": "AppStream-8.9.0.Z.MAIN"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-50387",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263914"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in DNSSEC-validating resolvers is of important severity because it can lead to uncontrolled CPU consumption, resulting in a Denial of Service (DoS). By exploiting this flaw, attackers can send specially crafted DNS responses that cause the resolver to enter a state of excessive resource utilization. This can severely impact the availability and performance of DNS services, affecting not only the targeted resolver but potentially cascading to other dependent systems and services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.src",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263914",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50387",
          "url": "https://kb.isc.org/docs/cve-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-14T15:34:48+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1335"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator"
    },
    {
      "cve": "CVE-2023-50868",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263917"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in BIND9 that leads to CPU exhaustion through a flood of DNSSEC responses with NSEC3 signatures is a important severity issue due to its potential to induce a Denial of Service (DoS) condition on affected resolvers. By exploiting this flaw, an attacker can overwhelm a DNSSEC-enabled resolver with computationally intensive tasks, depleting CPU resources and disrupting normal DNS operations. This can result in significant service outages, affecting the resolver\u0027s ability to process legitimate DNS queries and thereby compromising network availability and reliability. The impact is exacerbated in high-traffic environments or where DNSSEC validation is extensively employed, making prompt remediation essential to prevent operational disruptions and maintain DNS infrastructure integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.src",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
          "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263917",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50868",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50868",
          "url": "https://kb.isc.org/docs/cve-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-14T15:34:48+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1335"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.src",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debuginfo-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-debugsource-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-0:2.79-31.el8_9.2.x86_64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.aarch64",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.ppc64le",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.s390x",
            "AppStream-8.9.0.Z.MAIN:dnsmasq-utils-debuginfo-0:2.79-31.el8_9.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources"
    }
  ]
}

RHSA-2024:1522

Vulnerability from csaf_redhat - Published: 2024-03-26 12:41 - Updated: 2026-04-22 16:37

Summary

Red Hat Security Advisory: dnsmasq security update

Severity

Important

Notes

Topic: An update for dnsmasq is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2023-50387

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-50868

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

17 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:1522	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-50387	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://www.cve.org/CVERecord?id=CVE-2023-50387	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50387	external
https://blog.powerdns.com/2024/02/13/powerdns-rec…	external
https://kb.isc.org/docs/cve-2023-50387	external
https://www.knot-resolver.cz/2024-02-13-knot-reso…	external
https://access.redhat.com/security/cve/CVE-2023-50868	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://www.cve.org/CVERecord?id=CVE-2023-50868	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50868	external
https://kb.isc.org/docs/cve-2023-50868	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for dnsmasq is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The dnsmasq packages contain Dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.\n\nSecurity Fix(es):\n\n* dnsmasq: bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)\n\n* dnsmasq: bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:1522",
        "url": "https://access.redhat.com/errata/RHSA-2024:1522"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2263914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
      },
      {
        "category": "external",
        "summary": "2263917",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1522.json"
      }
    ],
    "title": "Red Hat Security Advisory: dnsmasq security update",
    "tracking": {
      "current_release_date": "2026-04-22T16:37:00+00:00",
      "generator": {
        "date": "2026-04-22T16:37:00+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:1522",
      "initial_release_date": "2024-03-26T12:41:36+00:00",
      "revision_history": [
        {
          "date": "2024-03-26T12:41:36+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-03-26T12:41:36+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-22T16:37:00+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
                  "product_id": "AppStream-9.2.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:9.2::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-6.el9_2.3.src",
                "product": {
                  "name": "dnsmasq-0:2.85-6.el9_2.3.src",
                  "product_id": "dnsmasq-0:2.85-6.el9_2.3.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-6.el9_2.3?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-6.el9_2.3.aarch64",
                "product": {
                  "name": "dnsmasq-0:2.85-6.el9_2.3.aarch64",
                  "product_id": "dnsmasq-0:2.85-6.el9_2.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-6.el9_2.3?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
                  "product_id": "dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-6.el9_2.3?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
                  "product_id": "dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-6.el9_2.3?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
                  "product_id": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-6.el9_2.3?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-6.el9_2.3?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-6.el9_2.3.ppc64le",
                "product": {
                  "name": "dnsmasq-0:2.85-6.el9_2.3.ppc64le",
                  "product_id": "dnsmasq-0:2.85-6.el9_2.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-6.el9_2.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
                  "product_id": "dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-6.el9_2.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
                  "product_id": "dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-6.el9_2.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
                  "product_id": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-6.el9_2.3?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-6.el9_2.3?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-6.el9_2.3.x86_64",
                "product": {
                  "name": "dnsmasq-0:2.85-6.el9_2.3.x86_64",
                  "product_id": "dnsmasq-0:2.85-6.el9_2.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-6.el9_2.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
                  "product_id": "dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-6.el9_2.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
                  "product_id": "dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-6.el9_2.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
                  "product_id": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-6.el9_2.3?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-6.el9_2.3?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-6.el9_2.3.s390x",
                "product": {
                  "name": "dnsmasq-0:2.85-6.el9_2.3.s390x",
                  "product_id": "dnsmasq-0:2.85-6.el9_2.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-6.el9_2.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
                  "product_id": "dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-6.el9_2.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
                  "product_id": "dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-6.el9_2.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
                  "product_id": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-6.el9_2.3?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-6.el9_2.3?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-6.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.aarch64"
        },
        "product_reference": "dnsmasq-0:2.85-6.el9_2.3.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-6.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.ppc64le"
        },
        "product_reference": "dnsmasq-0:2.85-6.el9_2.3.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-6.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.s390x"
        },
        "product_reference": "dnsmasq-0:2.85-6.el9_2.3.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-6.el9_2.3.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.src"
        },
        "product_reference": "dnsmasq-0:2.85-6.el9_2.3.src",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-6.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.x86_64"
        },
        "product_reference": "dnsmasq-0:2.85-6.el9_2.3.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-6.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.aarch64"
        },
        "product_reference": "dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le"
        },
        "product_reference": "dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-6.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.s390x"
        },
        "product_reference": "dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-6.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.x86_64"
        },
        "product_reference": "dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-50387",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263914"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in DNSSEC-validating resolvers is of important severity because it can lead to uncontrolled CPU consumption, resulting in a Denial of Service (DoS). By exploiting this flaw, attackers can send specially crafted DNS responses that cause the resolver to enter a state of excessive resource utilization. This can severely impact the availability and performance of DNS services, affecting not only the targeted resolver but potentially cascading to other dependent systems and services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.aarch64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.ppc64le",
          "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.s390x",
          "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.src",
          "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.x86_64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263914",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50387",
          "url": "https://kb.isc.org/docs/cve-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-26T12:41:36+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.src",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1522"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.src",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.src",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator"
    },
    {
      "cve": "CVE-2023-50868",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263917"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in BIND9 that leads to CPU exhaustion through a flood of DNSSEC responses with NSEC3 signatures is a important severity issue due to its potential to induce a Denial of Service (DoS) condition on affected resolvers. By exploiting this flaw, an attacker can overwhelm a DNSSEC-enabled resolver with computationally intensive tasks, depleting CPU resources and disrupting normal DNS operations. This can result in significant service outages, affecting the resolver\u0027s ability to process legitimate DNS queries and thereby compromising network availability and reliability. The impact is exacerbated in high-traffic environments or where DNSSEC validation is extensively employed, making prompt remediation essential to prevent operational disruptions and maintain DNS infrastructure integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.aarch64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.ppc64le",
          "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.s390x",
          "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.src",
          "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.x86_64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
          "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
          "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263917",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50868",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50868",
          "url": "https://kb.isc.org/docs/cve-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-26T12:41:36+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.src",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1522"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.src",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.src",
            "AppStream-9.2.0.Z.EUS:dnsmasq-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debuginfo-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-debugsource-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-0:2.85-6.el9_2.3.x86_64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.aarch64",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.ppc64le",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.s390x",
            "AppStream-9.2.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-6.el9_2.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources"
    }
  ]
}

RHSA-2024:1543

Vulnerability from csaf_redhat - Published: 2024-03-27 15:04 - Updated: 2026-04-22 16:37

Summary

Red Hat Security Advisory: dnsmasq security update

Severity

Important

Notes

Topic: An update for dnsmasq is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: The dnsmasq packages contain dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server. Security Fix(es): * dnsmasq: bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387) * dnsmasq: bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2023-50387

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-50868

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

17 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:1543	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-50387	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://www.cve.org/CVERecord?id=CVE-2023-50387	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50387	external
https://blog.powerdns.com/2024/02/13/powerdns-rec…	external
https://kb.isc.org/docs/cve-2023-50387	external
https://www.knot-resolver.cz/2024-02-13-knot-reso…	external
https://access.redhat.com/security/cve/CVE-2023-50868	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://www.cve.org/CVERecord?id=CVE-2023-50868	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50868	external
https://kb.isc.org/docs/cve-2023-50868	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for dnsmasq is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The dnsmasq packages contain dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.\n\nSecurity Fix(es):\n\n* dnsmasq: bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)\n\n* dnsmasq: bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:1543",
        "url": "https://access.redhat.com/errata/RHSA-2024:1543"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2263914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
      },
      {
        "category": "external",
        "summary": "2263917",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1543.json"
      }
    ],
    "title": "Red Hat Security Advisory: dnsmasq security update",
    "tracking": {
      "current_release_date": "2026-04-22T16:37:00+00:00",
      "generator": {
        "date": "2026-04-22T16:37:00+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.5"
        }
      },
      "id": "RHSA-2024:1543",
      "initial_release_date": "2024-03-27T15:04:41+00:00",
      "revision_history": [
        {
          "date": "2024-03-27T15:04:41+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-03-27T15:04:41+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-22T16:37:00+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.9.0)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.9.0)",
                  "product_id": "AppStream-9.0.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:9.0::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-3.el9_0.1.src",
                "product": {
                  "name": "dnsmasq-0:2.85-3.el9_0.1.src",
                  "product_id": "dnsmasq-0:2.85-3.el9_0.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-3.el9_0.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-3.el9_0.1.aarch64",
                "product": {
                  "name": "dnsmasq-0:2.85-3.el9_0.1.aarch64",
                  "product_id": "dnsmasq-0:2.85-3.el9_0.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-3.el9_0.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
                  "product_id": "dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-3.el9_0.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
                  "product_id": "dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-3.el9_0.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
                  "product_id": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-3.el9_0.1?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-3.el9_0.1?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-3.el9_0.1.ppc64le",
                "product": {
                  "name": "dnsmasq-0:2.85-3.el9_0.1.ppc64le",
                  "product_id": "dnsmasq-0:2.85-3.el9_0.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-3.el9_0.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
                  "product_id": "dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-3.el9_0.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
                  "product_id": "dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-3.el9_0.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
                  "product_id": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-3.el9_0.1?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-3.el9_0.1?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-3.el9_0.1.x86_64",
                "product": {
                  "name": "dnsmasq-0:2.85-3.el9_0.1.x86_64",
                  "product_id": "dnsmasq-0:2.85-3.el9_0.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-3.el9_0.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
                  "product_id": "dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-3.el9_0.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
                  "product_id": "dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-3.el9_0.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
                  "product_id": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-3.el9_0.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-3.el9_0.1?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.85-3.el9_0.1.s390x",
                "product": {
                  "name": "dnsmasq-0:2.85-3.el9_0.1.s390x",
                  "product_id": "dnsmasq-0:2.85-3.el9_0.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.85-3.el9_0.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
                "product": {
                  "name": "dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
                  "product_id": "dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.85-3.el9_0.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
                  "product_id": "dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.85-3.el9_0.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
                  "product_id": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.85-3.el9_0.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.85-3.el9_0.1?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-3.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.aarch64"
        },
        "product_reference": "dnsmasq-0:2.85-3.el9_0.1.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-3.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.ppc64le"
        },
        "product_reference": "dnsmasq-0:2.85-3.el9_0.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-3.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.s390x"
        },
        "product_reference": "dnsmasq-0:2.85-3.el9_0.1.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-3.el9_0.1.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.src"
        },
        "product_reference": "dnsmasq-0:2.85-3.el9_0.1.src",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.85-3.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.x86_64"
        },
        "product_reference": "dnsmasq-0:2.85-3.el9_0.1.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64"
        },
        "product_reference": "dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-3.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.aarch64"
        },
        "product_reference": "dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le"
        },
        "product_reference": "dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-3.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.s390x"
        },
        "product_reference": "dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.85-3.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.x86_64"
        },
        "product_reference": "dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-50387",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263914"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in DNSSEC-validating resolvers is of important severity because it can lead to uncontrolled CPU consumption, resulting in a Denial of Service (DoS). By exploiting this flaw, attackers can send specially crafted DNS responses that cause the resolver to enter a state of excessive resource utilization. This can severely impact the availability and performance of DNS services, affecting not only the targeted resolver but potentially cascading to other dependent systems and services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.aarch64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.ppc64le",
          "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.s390x",
          "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.src",
          "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.x86_64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263914",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50387",
          "url": "https://kb.isc.org/docs/cve-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-27T15:04:41+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.src",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1543"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.src",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.src",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator"
    },
    {
      "cve": "CVE-2023-50868",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263917"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in BIND9 that leads to CPU exhaustion through a flood of DNSSEC responses with NSEC3 signatures is a important severity issue due to its potential to induce a Denial of Service (DoS) condition on affected resolvers. By exploiting this flaw, an attacker can overwhelm a DNSSEC-enabled resolver with computationally intensive tasks, depleting CPU resources and disrupting normal DNS operations. This can result in significant service outages, affecting the resolver\u0027s ability to process legitimate DNS queries and thereby compromising network availability and reliability. The impact is exacerbated in high-traffic environments or where DNSSEC validation is extensively employed, making prompt remediation essential to prevent operational disruptions and maintain DNS infrastructure integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.aarch64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.ppc64le",
          "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.s390x",
          "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.src",
          "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.x86_64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
          "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
          "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263917",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50868",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50868",
          "url": "https://kb.isc.org/docs/cve-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-27T15:04:41+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.src",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1543"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.src",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.src",
            "AppStream-9.0.0.Z.EUS:dnsmasq-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debuginfo-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-debugsource-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-0:2.85-3.el9_0.1.x86_64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.aarch64",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.ppc64le",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.s390x",
            "AppStream-9.0.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.85-3.el9_0.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources"
    }
  ]
}

RHSA-2024:1544

Vulnerability from csaf_redhat - Published: 2024-03-27 15:11 - Updated: 2026-04-30 13:16

Summary

Red Hat Security Advisory: dnsmasq security and bug fix update

Severity

Important

Notes

Topic: An update for dnsmasq is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: The dnsmasq packages contain dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server. Security Fixes: * dnsmasq: default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 (CVE-2023-28450) * dnsmasq: bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387) * dnsmasq: bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868) Bug Fix: * Segmentation fault occurs in dnsmasq-2.79-26 in RHEL8 For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2023-28450

A flaw was found in Dnsmasq. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2023-50387

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2023-50868

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

23 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:1544	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2178948	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2023-28450	self
https://bugzilla.redhat.com/show_bug.cgi?id=2178948	external
https://www.cve.org/CVERecord?id=CVE-2023-28450	external
https://nvd.nist.gov/vuln/detail/CVE-2023-28450	external
https://github.com/advisories/GHSA-vgrx-vhjf-p7wv	external
https://access.redhat.com/security/cve/CVE-2023-50387	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263914	external
https://www.cve.org/CVERecord?id=CVE-2023-50387	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50387	external
https://blog.powerdns.com/2024/02/13/powerdns-rec…	external
https://kb.isc.org/docs/cve-2023-50387	external
https://www.knot-resolver.cz/2024-02-13-knot-reso…	external
https://access.redhat.com/security/cve/CVE-2023-50868	self
https://bugzilla.redhat.com/show_bug.cgi?id=2263917	external
https://www.cve.org/CVERecord?id=CVE-2023-50868	external
https://nvd.nist.gov/vuln/detail/CVE-2023-50868	external
https://kb.isc.org/docs/cve-2023-50868	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for dnsmasq is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The dnsmasq packages contain dnsmasq, a lightweight DNS (Domain Name Server) forwarder and DHCP (Dynamic Host Configuration Protocol) server.\n\nSecurity Fixes:\n\n* dnsmasq: default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 (CVE-2023-28450)\n\n* dnsmasq: bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)\n\n* dnsmasq: bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)\n\nBug Fix:\n\n* Segmentation fault occurs in dnsmasq-2.79-26 in RHEL8\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:1544",
        "url": "https://access.redhat.com/errata/RHSA-2024:1544"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2178948",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178948"
      },
      {
        "category": "external",
        "summary": "2263914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
      },
      {
        "category": "external",
        "summary": "2263917",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1544.json"
      }
    ],
    "title": "Red Hat Security Advisory: dnsmasq security and bug fix update",
    "tracking": {
      "current_release_date": "2026-04-30T13:16:09+00:00",
      "generator": {
        "date": "2026-04-30T13:16:09+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.7"
        }
      },
      "id": "RHSA-2024:1544",
      "initial_release_date": "2024-03-27T15:11:31+00:00",
      "revision_history": [
        {
          "date": "2024-03-27T15:11:31+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-03-27T15:11:31+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-30T13:16:09+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.8.8)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.8.8)",
                  "product_id": "AppStream-8.8.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:8.8::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.79-26.el8_8.4.src",
                "product": {
                  "name": "dnsmasq-0:2.79-26.el8_8.4.src",
                  "product_id": "dnsmasq-0:2.79-26.el8_8.4.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.79-26.el8_8.4?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.79-26.el8_8.4.aarch64",
                "product": {
                  "name": "dnsmasq-0:2.79-26.el8_8.4.aarch64",
                  "product_id": "dnsmasq-0:2.79-26.el8_8.4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.79-26.el8_8.4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
                "product": {
                  "name": "dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
                  "product_id": "dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.79-26.el8_8.4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
                  "product_id": "dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.79-26.el8_8.4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
                  "product_id": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.79-26.el8_8.4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.79-26.el8_8.4?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.79-26.el8_8.4.ppc64le",
                "product": {
                  "name": "dnsmasq-0:2.79-26.el8_8.4.ppc64le",
                  "product_id": "dnsmasq-0:2.79-26.el8_8.4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.79-26.el8_8.4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
                "product": {
                  "name": "dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
                  "product_id": "dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.79-26.el8_8.4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
                  "product_id": "dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.79-26.el8_8.4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
                  "product_id": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.79-26.el8_8.4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.79-26.el8_8.4?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.79-26.el8_8.4.x86_64",
                "product": {
                  "name": "dnsmasq-0:2.79-26.el8_8.4.x86_64",
                  "product_id": "dnsmasq-0:2.79-26.el8_8.4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.79-26.el8_8.4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
                "product": {
                  "name": "dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
                  "product_id": "dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.79-26.el8_8.4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
                  "product_id": "dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.79-26.el8_8.4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
                  "product_id": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.79-26.el8_8.4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.79-26.el8_8.4?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "dnsmasq-0:2.79-26.el8_8.4.s390x",
                "product": {
                  "name": "dnsmasq-0:2.79-26.el8_8.4.s390x",
                  "product_id": "dnsmasq-0:2.79-26.el8_8.4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq@2.79-26.el8_8.4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
                "product": {
                  "name": "dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
                  "product_id": "dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils@2.79-26.el8_8.4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
                "product": {
                  "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
                  "product_id": "dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debugsource@2.79-26.el8_8.4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
                "product": {
                  "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
                  "product_id": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-debuginfo@2.79-26.el8_8.4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
                "product": {
                  "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
                  "product_id": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/dnsmasq-utils-debuginfo@2.79-26.el8_8.4?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.79-26.el8_8.4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64"
        },
        "product_reference": "dnsmasq-0:2.79-26.el8_8.4.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.79-26.el8_8.4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le"
        },
        "product_reference": "dnsmasq-0:2.79-26.el8_8.4.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.79-26.el8_8.4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x"
        },
        "product_reference": "dnsmasq-0:2.79-26.el8_8.4.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.79-26.el8_8.4.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src"
        },
        "product_reference": "dnsmasq-0:2.79-26.el8_8.4.src",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-0:2.79-26.el8_8.4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64"
        },
        "product_reference": "dnsmasq-0:2.79-26.el8_8.4.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64"
        },
        "product_reference": "dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64"
        },
        "product_reference": "dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le"
        },
        "product_reference": "dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x"
        },
        "product_reference": "dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64"
        },
        "product_reference": "dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.79-26.el8_8.4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64"
        },
        "product_reference": "dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le"
        },
        "product_reference": "dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.79-26.el8_8.4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x"
        },
        "product_reference": "dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-0:2.79-26.el8_8.4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64"
        },
        "product_reference": "dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
        },
        "product_reference": "dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-28450",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2023-03-16T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2178948"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Dnsmasq. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "dnsmasq: default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The severity of this vulnerability is not important but moderate because exploiting the vulnerability can lead to a theoretical disruption of the availability of the service, but doesn\u2019t directly compromise data integrity or confidentiality. This theoretical disruption would require an attacker to be able to induce IP fragmentation during transmission and can be mitigated with a simple configuration change in any affected version. A successful attack would require significant target specific preparation and the ability to act as a man-in-the-middle or control the path MTU of the authoritative DNS server. Additionally, this CVE is easily remediated by setting the edns-packet-max value to 1232 in the dnsmasq configuration.\n\nThe changes made for DNS Flag Day 2020 were primarily related to improving service reliability in order to make sure that DNS servers do not experience transmission failures due to IP fragmentation over networks of unknown MTU configurations. This change of the default maximum EDNS Buffer Size was coordinated so that default configurations of DNS services would provide more reliable default settings as well as avoid attacks on DNS services that can only be made possible when UDP packets are fragmented in transit. For example, if the DNS Query ID and UDP port are carried in the first IP fragment, an attacker could spoof the second fragment and poison the DNS cache by swapping the subsequent good IP fragments with their own. \n\nBy using a default maximum EDNS value of 1232 (the largest value found to avoids fragmentation on nearly all modern networks) and relying on TCP for DNS queries with larger responses, IP Fragmentation issues can be reliably avoided with the default dnsmasq configuration.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-28450"
        },
        {
          "category": "external",
          "summary": "RHBZ#2178948",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178948"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-28450",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-28450"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-28450",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-28450"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-vgrx-vhjf-p7wv",
          "url": "https://github.com/advisories/GHSA-vgrx-vhjf-p7wv"
        }
      ],
      "release_date": "2023-03-15T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-27T15:11:31+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1544"
        },
        {
          "category": "workaround",
          "details": "Systems that can not be updated can still configure dnsmasq to use the recommended maximum EDNS value by setting edns-packet-max=1232 in the dnsmasq configuration.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "dnsmasq: default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232"
    },
    {
      "cve": "CVE-2023-50387",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263914"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in DNSSEC-validating resolvers is of important severity because it can lead to uncontrolled CPU consumption, resulting in a Denial of Service (DoS). By exploiting this flaw, attackers can send specially crafted DNS responses that cause the resolver to enter a state of excessive resource utilization. This can severely impact the availability and performance of DNS services, affecting not only the targeted resolver but potentially cascading to other dependent systems and services.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263914",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263914"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50387",
          "url": "https://kb.isc.org/docs/cve-2023-50387"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-27T15:11:31+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1544"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator"
    },
    {
      "cve": "CVE-2023-50868",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-02-12T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2263917"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in bind9. By flooding a DNSSEC resolver with responses coming from a DNSEC-signed zone using NSEC3, an attacker can lead the targeted resolver to a CPU exhaustion, further leading to a Denial of Service on the targeted host.\r\n\r\nThis vulnerability applies only for systems where DNSSEC validation is enabled.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The vulnerability in BIND9 that leads to CPU exhaustion through a flood of DNSSEC responses with NSEC3 signatures is a important severity issue due to its potential to induce a Denial of Service (DoS) condition on affected resolvers. By exploiting this flaw, an attacker can overwhelm a DNSSEC-enabled resolver with computationally intensive tasks, depleting CPU resources and disrupting normal DNS operations. This can result in significant service outages, affecting the resolver\u0027s ability to process legitimate DNS queries and thereby compromising network availability and reliability. The impact is exacerbated in high-traffic environments or where DNSSEC validation is extensively employed, making prompt remediation essential to prevent operational disruptions and maintain DNS infrastructure integrity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
          "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
          "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "RHBZ#2263917",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263917"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-50868",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released",
          "url": "https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released"
        },
        {
          "category": "external",
          "summary": "https://kb.isc.org/docs/cve-2023-50868",
          "url": "https://kb.isc.org/docs/cve-2023-50868"
        },
        {
          "category": "external",
          "summary": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html",
          "url": "https://www.knot-resolver.cz/2024-02-13-knot-resolver-5.7.1.html"
        }
      ],
      "release_date": "2024-02-13T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-27T15:11:31+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:1544"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.src",
            "AppStream-8.8.0.Z.EUS:dnsmasq-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debuginfo-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-debugsource-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-0:2.79-26.el8_8.4.x86_64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.aarch64",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.ppc64le",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.s390x",
            "AppStream-8.8.0.Z.EUS:dnsmasq-utils-debuginfo-0:2.79-26.el8_8.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-50387 (GCVE-0-2023-50387)

Tags

Sightings

Nomenclature