security/vuxml: reference FreeBSD SA-24:03.unbound

Add a reference to FreeBSD SA-24:03.unbound (announced 2024-03-28) to the vuxml entry for Unbound CVE-2023-50387 and CVE-2023-50868. Unbound was updated to 1.19.1 in FreeBSD 14.0-RELEASE-p6 and in FreeBSD 13.2-RELEASE-p11. FreeBSD 13.3 was not affected (Unbound 1.19.1 was included in the release).
freebsd · Apr 1, 2024 · 2946241 · 2946241
1 parent 1932cda
commit 2946241
Showing 1 changed file with 7 additions and 0 deletions.
diff --git a/security/vuxml/vuln/2024.xml b/security/vuxml/vuln/2024.xml
@@ -1510,6 +1510,11 @@
 	<name>unbound</name>
 	<range><lt>1.19.1</lt></range>
       </package>
+      <package>
+	<name>FreeBSD</name>
+	<range><ge>14.0</ge><lt>14.0_6</lt></range>
+	<range><ge>13.2</ge><lt>13.2_11</lt></range>
+      </package>
     </affects>
     <description>
 	<body xmlns="http://www.w3.org/1999/xhtml">
@@ -1546,10 +1551,12 @@
       <url>https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html</url>
       <url>https://blog.powerdns.com/2024/02/13/powerdns-recursor-4-8-6-4-9-3-5-0-2-released</url>
       <url>https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/</url>
+      <freebsdsa>SA-24:03.unbound</freebsdsa>
     </references>
     <dates>
       <discovery>2024-02-06</discovery>
       <entry>2024-02-13</entry>
+      <modified>2024-04-01</modified>
     </dates>
   </vuln>