Unbound upstream has released latest, v1.4.3 version:
addressing one denial of service issue, specific to 64 bit
This issue affects the versions of the unbound package,
as shipped with Fedora release of 11 and 12.
This issue affects the version of the unbound package,
as shipped within EPEL5 repository.
This is CVE-2010-0735
There was a race condition with CVE assignments, so this issue has been assigned CVE-2010-0969 instead (CVE-2010-0735 should not be used at all).
CVE-2010-0735 has been rejected by Mitre:
** REJECT **
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-0969. Reason:
This candidate is a duplicate of CVE-2010-0969. Notes: All CVE users
should reference CVE-2010-0969 instead of this candidate. All
references and descriptions in this candidate have been removed to
prevent accidental usage.
unbound-1.4.3-1.el5 has been submitted as an update for Fedora EPEL 5.
unbound-1.4.3-1.el5 has been pushed to the Fedora EPEL 5 stable repository. If problems still persist, please make note of it in this bug report.