Bug 2342879 (CVE-2024-11187)
| Summary: | CVE-2024-11187 bind: bind9: Many records in the additional section cause CPU exhaustion | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | OSIDB Bzimport <bzimport> |
| Component: | vulnerability | Assignee: | Product Security DevOps Team <prodsec-dev> |
| Status: | NEW --- | QA Contact: | |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | unspecified | CC: | vrajput |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: |
A flaw was found in the bind package where a crafted DNS zone may generate numerous records in the 'Additional' section of the response. This flaw allows an attacker to send a large amount of such queries, which may lead either the authoritative server or an independent resolver to run into an uncontrolled CPU resource scenario, ultimately resulting in the server not being able to attend new requests and causing a denial of service as a consequence.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 2342889, 2342890, 2342891, 2342892 | ||
| Bug Blocks: | |||
|
Description
OSIDB Bzimport
2025-01-29 21:07:00 UTC
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2025:1664 https://access.redhat.com/errata/RHSA-2025:1664 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2025:1665 https://access.redhat.com/errata/RHSA-2025:1665 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2025:1666 https://access.redhat.com/errata/RHSA-2025:1666 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Extended Update Support Via RHSA-2025:1669 https://access.redhat.com/errata/RHSA-2025:1669 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2025:1670 https://access.redhat.com/errata/RHSA-2025:1670 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2025:1676 https://access.redhat.com/errata/RHSA-2025:1676 This issue has been addressed in the following products: Red Hat Enterprise Linux 7.7 Advanced Update Support Via RHSA-2025:1674 https://access.redhat.com/errata/RHSA-2025:1674 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2025:1675 https://access.redhat.com/errata/RHSA-2025:1675 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2025:1679 https://access.redhat.com/errata/RHSA-2025:1679 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2025:1678 https://access.redhat.com/errata/RHSA-2025:1678 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2025:1681 https://access.redhat.com/errata/RHSA-2025:1681 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2025:1684 https://access.redhat.com/errata/RHSA-2025:1684 This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Extended Lifecycle Support - EXTENSION Via RHSA-2025:1685 https://access.redhat.com/errata/RHSA-2025:1685 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Via RHSA-2025:1687 https://access.redhat.com/errata/RHSA-2025:1687 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Telecommunications Update Service Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Via RHSA-2025:1691 https://access.redhat.com/errata/RHSA-2025:1691 This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2025:1718 https://access.redhat.com/errata/RHSA-2025:1718 This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.17 Via RHSA-2025:1912 https://access.redhat.com/errata/RHSA-2025:1912 This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.16 Via RHSA-2025:1907 https://access.redhat.com/errata/RHSA-2025:1907 This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.15 Via RHSA-2025:2454 https://access.redhat.com/errata/RHSA-2025:2454 This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.12 Via RHSA-2025:2441 https://access.redhat.com/errata/RHSA-2025:2441 This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.14 Via RHSA-2025:2710 https://access.redhat.com/errata/RHSA-2025:2710 This issue has been addressed in the following products: Red Hat OpenShift Container Platform 4.18 Via RHSA-2025:3775 https://access.redhat.com/errata/RHSA-2025:3775 |