fix CVE-2024-1488

2024-02-27 03:08:21 +00:00 · 2024-02-27 03:08:21 +00:00 · bb40067735
commit bb40067735
parent 0ed97f9e39
2 changed files with 8 additions and 2 deletions
--- a/unbound.conf
+++ b/unbound.conf
@ -805,7 +805,7 @@ remote-control:
 	# Enable remote control with unbound-control(8) here.
 	# set up the keys and certificates with unbound-control-setup.
 	# Note: required for unbound-munin package
-	control-enable: yes
+	control-enable: no

 	# Set to no and use an absolute path as control-interface to use
 	# a unix local named pipe for unbound-control.
--- a/unbound.spec
+++ b/unbound.spec
@ -2,7 +2,7 @@

 Name:          unbound
 Version:       1.11.0
-Release:       9
+Release:       10
 Summary:       Unbound is a validating, recursive, caching DNS resolver
 License:       BSD
 Url:           https://nlnetlabs.nl/projects/unbound/about/
@ -231,6 +231,12 @@ popd
 %{_mandir}/man*

 %changelog
+* Tue Feb 27 2024 gaihuiying <eaglegai@163.com> - 1.11.0-10
+- Type:cves
+- CVE:CVE-2024-1488
+- SUG:NA
+- DESC:fix CVE-2024-1488
+
 * Fri Feb 23 2024 gaihuiying <eaglegai@163.com> - 1.11.0-9
 - Type:bugfix
 - CVE:NA