Detections
Analytics
SUSE SLES15 Security Update : unbound (SUSE-SU-2026:2369-1)
critical Nessus Plugin ID 321050
Synopsis
The remote SUSE host is missing one or more security updates.Description
The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2369-1 advisory.This update for unbound fixes the following issues
- CVE-2026-32792: Packet of death with DNSCrypt (bsc#1265583).
- CVE-2026-33278: Possible remote code execution during DNSSEC validation (bsc#1265587).
- CVE-2026-40622: 'Ghost domain name' variant (bsc#1265581).
- CVE-2026-41292: Parsing a long list of incoming EDNS options degrades performance (bsc#1265580).
- CVE-2026-42534: Jostle logic bypass degrades resolution performance (bsc#1265585).
- CVE-2026-42923: Degradation of service with unbounded NSEC3 hash calculations (bsc#1265589).
- CVE-2026-42944: Heap overflow and crash with multiple nsid, cookie, padding EDNS options (bsc#1265578).
- CVE-2026-42959: Crash during DNSSEC validation of malicious content (bsc#1265586).
- CVE-2026-42960: Possible cache poisoning attack while following delegation (bsc#1265588).
- CVE-2026-44390: Unbounded name compression in certain cases causes degradation of service (bsc#1265584).
- CVE-2026-44608: Use after free and crash in RPZ code (bsc#1265582).
Tenable has extracted the preceding description block directly from the SUSE security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update the affected libunbound8, unbound-anchor and / or unbound-devel packages.See Also
https://bugzilla.suse.com/1265578
https://bugzilla.suse.com/1265580
https://bugzilla.suse.com/1265581
https://bugzilla.suse.com/1265582
https://bugzilla.suse.com/1265583
https://bugzilla.suse.com/1265584
https://bugzilla.suse.com/1265585
https://bugzilla.suse.com/1265586
https://bugzilla.suse.com/1265587
https://bugzilla.suse.com/1265588
https://bugzilla.suse.com/1265589
https://lists.suse.com/pipermail/sle-updates/2026-June/047269.html
https://www.suse.com/security/cve/CVE-2026-32792
https://www.suse.com/security/cve/CVE-2026-33278
https://www.suse.com/security/cve/CVE-2026-40622
https://www.suse.com/security/cve/CVE-2026-41292
https://www.suse.com/security/cve/CVE-2026-42534
https://www.suse.com/security/cve/CVE-2026-42923
https://www.suse.com/security/cve/CVE-2026-42944
https://www.suse.com/security/cve/CVE-2026-42959
https://www.suse.com/security/cve/CVE-2026-42960
Plugin Details
Severity: Critical
ID: 321050
File Name: suse_SU-2026-2369-1.nasl
Version: 1.1
Type: Local
Agent: unix
Family: SuSE Local Security Checks
Published: 6/14/2026
Updated: 6/14/2026
Supported Sensors: Continuous Assessment, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.1
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2026-33278
CVSS v3
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.7
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
CVSS Score Source: CVE-2026-42960
CVSS v4
Risk Factor: Critical
Base Score: 10
Threat Score: 9.1
Threat Vector: CVSS:4.0/E:U
Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
Vulnerability Information
CPE: p-cpe:/a:novell:suse_linux:unbound-anchor, p-cpe:/a:novell:suse_linux:libunbound8, p-cpe:/a:novell:suse_linux:unbound-devel, cpe:/o:novell:suse_linux:15
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Ease: No known exploits are available
Patch Publication Date: 6/11/2026
Vulnerability Publication Date: 5/20/2026
Reference Information
CVE: CVE-2026-32792, CVE-2026-33278, CVE-2026-40622, CVE-2026-41292, CVE-2026-42534, CVE-2026-42923, CVE-2026-42944, CVE-2026-42959, CVE-2026-42960, CVE-2026-44390, CVE-2026-44608
SuSE: SUSE-SU-2026:2369-1