Ashish SHUKLA via Guix-patches via <guix-patches@gnu.org> writes:

> This contains a fix for CVE-2024-8508.
>
> * gnu/packages/dns.scm (unbound): Update to 1.21.1.
>
> Change-Id: I2ed1806a0859c5dbd729d18a074220ab13b53223
> ---
>  gnu/packages/dns.scm | 5 +++--
>  1 file changed, 3 insertions(+), 2 deletions(-)
>
> diff --git a/gnu/packages/dns.scm b/gnu/packages/dns.scm
> index b2eda558df..1e9d1bc904 100644
> --- a/gnu/packages/dns.scm
> +++ b/gnu/packages/dns.scm
> @@ -22,6 +22,7 @@
>  ;;; Copyright © 2023 Bruno Victal <mirai@makinata.eu>
>  ;;; Copyright © 2023 Hilton Chain <hako@ultrarare.space>
>  ;;; Copyright © 2024 John Kehayias <john.kehayias@protonmail.com>
> +;;; Copyright © 2024 Ashish SHUKLA <ashish.is@lostca.se>
>  ;;;
>  ;;; This file is part of GNU Guix.
>  ;;;
> @@ -635,14 +636,14 @@ (define-public rbldnsd
>  (define-public unbound
>    (package
>      (name "unbound")
> -    (version "1.21.0")
> +    (version "1.21.1")
>      (source
>       (origin
>         (method url-fetch)
>         (uri (string-append "https://www.unbound.net/downloads/unbound-"
>                             version ".tar.gz"))
>         (sha256
> -        (base32 "08a5l5z0c99433pqg2i7x5d9m6as7c2z3sv4zakdy6zqn3bagp77"))))
> +        (base32 "0ipam47nnh86v1wbjvk337wch6pcplbk353yr39kcav24cyd4dih"))))
>      (build-system gnu-build-system)
>      (outputs '("out" "python"))
>      (native-inputs
>
> base-commit: ebb715aabfc4e59ed14b964ac7fdd2a9f9f44526

push, close.