Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Debian dsa-5987 : libunbound-dev - security update

🗓️ 27 Aug 2025 00:00:00Reported by TenableType 
nessus
 nessus🔗 www.tenable.com👁 5 Views

Debian DSA-5987 fixes Unbound vulnerabilities CVE-2024-8508, CVE-2024-33655, CVE-2025-5994 by upgrading Unbound.

Related
Refs
Code
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: Multiple Vulnerabilities in IBM API Connect
15 Mar 202500:18
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities have been identified with the DS8900F and DS8A00 Hardware Management Console (HMC)
3 Mar 202600:44
ibm
IBM Security Bulletins		Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
15 Apr 202502:36
ibm
FreeBSD		Unbound -- Denial of service attack
3 Oct 202400:00
freebsd
FreeBSD		unbound -- Cache poisoning via the ECS-enabled Rebirthday Attack
16 Jul 202500:00
freebsd
ATTACKERKB		CVE-2026-44390
20 May 202609:21
attackerkb
Tenable Nessus		Amazon Linux 2023 : python3-unbound, unbound, unbound-anchor (ALAS2023-2024-610)
13 May 202400:00
nessus
Tenable Nessus		Amazon Linux 2023 : python3-unbound, unbound, unbound-anchor (ALAS2023-2024-719)
14 Oct 202400:00
nessus
Tenable Nessus		Amazon Linux 2023 : python3-unbound, unbound, unbound-anchor (ALAS2023-2025-1122)
4 Aug 202500:00
nessus
Tenable Nessus		Amazon Linux 2 : unbound (ALAS-2024-2536)
15 May 202400:00
nessus
Rows per page
#%NASL_MIN_LEVEL 80900
#
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory dsa-5987. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('compat.inc');

if (description)
{
  script_id(258047);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/08/27");

  script_cve_id("CVE-2024-8508", "CVE-2024-33655", "CVE-2025-5994");
  script_xref(name:"IAVA", value:"2024-A-0682");

  script_name(english:"Debian dsa-5987 : libunbound-dev - security update");

  script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing one or more security-related updates.");
  script_set_attribute(attribute:"description", value:
"The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the
dsa-5987 advisory.

    - -------------------------------------------------------------------------
    Debian Security Advisory DSA-5987-1                   [email protected]
    https://www.debian.org/security/                       Moritz Muehlenhoff
    August 27, 2025                       https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package        : unbound
    CVE ID         : CVE-2024-8508 CVE-2024-33655 CVE-2025-5994

    Multiple security issues were discovered in Unbound, a validating,
    recursive, caching DNS resolver, which may result in denial of service
    or cache poisoning via the rebirthday attack.

    For the oldstable distribution (bookworm), these problems have been fixed
    in version 1.17.1-2+deb12u3.

    We recommend that you upgrade your unbound packages.

    For the detailed security status of unbound please refer to
    its security tracker page at:
    https://security-tracker.debian.org/tracker/unbound

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: [email protected]

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/source-package/unbound");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2024-33655");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2024-8508");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2025-5994");
  script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/bookworm/unbound");
  script_set_attribute(attribute:"solution", value:
"Upgrade the libunbound-dev packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss4_vector", value:"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N");
  script_set_attribute(attribute:"cvss4_supplemental", value:"CVSS:4.0/R:U/V:C");
  script_set_attribute(attribute:"cvss4_threat_vector", value:"CVSS:4.0/E:U");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-8508");
  script_set_attribute(attribute:"cvss4_score_source", value:"CVE-2025-5994");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/05/09");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/08/27");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/08/27");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libunbound-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libunbound8");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:python3-unbound");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:unbound");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:unbound-anchor");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:unbound-host");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:12.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"II");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Debian Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);

var debian_release = get_kb_item('Host/Debian/release');
if ( isnull(debian_release) ) audit(AUDIT_OS_NOT, 'Debian');
debian_release = chomp(debian_release);
if (! preg(pattern:"^(12)\.[0-9]+", string:debian_release)) audit(AUDIT_OS_NOT, 'Debian 12.0', 'Debian ' + debian_release);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);

var pkgs = [
    {'release': '12.0', 'prefix': 'libunbound-dev', 'reference': '1.17.1-2+deb12u3'},
    {'release': '12.0', 'prefix': 'libunbound8', 'reference': '1.17.1-2+deb12u3'},
    {'release': '12.0', 'prefix': 'python3-unbound', 'reference': '1.17.1-2+deb12u3'},
    {'release': '12.0', 'prefix': 'unbound', 'reference': '1.17.1-2+deb12u3'},
    {'release': '12.0', 'prefix': 'unbound-anchor', 'reference': '1.17.1-2+deb12u3'},
    {'release': '12.0', 'prefix': 'unbound-host', 'reference': '1.17.1-2+deb12u3'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var _release = NULL;
  var prefix = NULL;
  var reference = NULL;
  if (!empty_or_null(package_array['release'])) _release = package_array['release'];
  if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];
  if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
  if (_release && prefix && reference) {
    if (deb_check(release:_release, prefix:prefix, reference:reference)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : deb_report_get()
  );
  exit(0);
}
else
{
  var tested = deb_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libunbound-dev / libunbound8 / python3-unbound / unbound / etc');
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
27 Aug 2025 00:00Current
7High risk
Vulners AI Score7
CVSS 3.15.3 - 7.5
CVSS 48.7
EPSS0.02775
SSVC
security advisoryunboundupgrade requiredcve 2024 8508
5