package/unbound: security bump to version 1.20.0

This release has a fix for the DNSBomb issue CVE-2024-33655. This has a low severity for Unbound, since it makes Unbound complicit in targeting others, but does not affect Unbound so much. This security release also fixes CVE-2024-1931. https://nlnetlabs.nl/news/2024/May/08/unbound-1.20.0-released https://nlnetlabs.nl/news/2024/Mar/14/unbound-1.19.3-released https://nlnetlabs.nl/news/2024/Mar/07/unbound-1.19.2-released Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit 7ce07b7b29) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2024-11-27 07:23:30 +08:00 · 2024-07-21 17:01:16 +02:00 · 2024-07-21 17:01:16 +02:00 · 453ed0edfe
commit 453ed0edfe
parent 6718560ed9
2 changed files with 3 additions and 3 deletions
--- a/package/unbound/unbound.hash
+++ b/package/unbound/unbound.hash
@ -1,5 +1,5 @@
-# From https://nlnetlabs.nl/downloads/unbound/unbound-1.19.1.tar.gz.sha256
-sha256  bc1d576f3dd846a0739adc41ffaa702404c6767d2b6082deb9f2f97cbb24a3a9  unbound-1.19.1.tar.gz
+# From https://nlnetlabs.nl/downloads/unbound/unbound-1.20.0.tar.gz.sha256
+sha256  56b4ceed33639522000fd96775576ddf8782bb3617610715d7f1e777c5ec1dbf  unbound-1.20.0.tar.gz

 # Locally calculated
 sha256  8eb9a16cbfb8703090bbfa3a2028fd46bb351509a2f90dc1001e51fbe6fd45db  LICENSE
--- a/package/unbound/unbound.mk
+++ b/package/unbound/unbound.mk
@ -4,7 +4,7 @@
 #
 ################################################################################

-UNBOUND_VERSION = 1.19.1
+UNBOUND_VERSION = 1.20.0
 UNBOUND_SITE = https://www.unbound.net/downloads
 UNBOUND_INSTALL_STAGING = YES
 UNBOUND_DEPENDENCIES = host-pkgconf expat libevent openssl