Packages
- ldns - ldns library for DNS programming
Details
Pablo Ruiz discovered that ldns did not properly validate DNS
responses when used as a stub resolver over UDP. A remote
attacker could possibly use this issue to inject arbitrary DNS
responses.
Pablo Ruiz discovered that ldns did not properly validate DNS
responses when used as a stub resolver over UDP. A remote
attacker could possibly use this issue to inject arbitrary DNS
responses.
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 26.04 LTS resolute | ldnsutils – 1.8.4-2ubuntu0.26.04.1~esm1 | ||
| libldns3t64 – 1.8.4-2ubuntu0.26.04.1~esm1 | |||
| 24.04 LTS noble | ldnsutils – 1.8.3-2ubuntu0.1~esm1 | ||
| libldns3t64 – 1.8.3-2ubuntu0.1~esm1 | |||
| 22.04 LTS jammy | ldnsutils – 1.7.1-2ubuntu4+esm2 | ||
| libldns3 – 1.7.1-2ubuntu4+esm2 | |||
| 20.04 LTS focal | ldnsutils – 1.7.0-4.1ubuntu1+esm2 | ||
| libldns2 – 1.7.0-4.1ubuntu1+esm2 | |||
| 18.04 LTS bionic | ldnsutils – 1.7.0-3ubuntu4.1+esm1 | ||
| libldns2 – 1.7.0-3ubuntu4.1+esm1 | |||
| 16.04 LTS xenial | ldnsutils – 1.6.17-8ubuntu0.1+esm2 | ||
| libldns1 – 1.6.17-8ubuntu0.1+esm2 | |||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.