Bug 2298878 (CVE-2024-0760) - CVE-2024-0760 bind: bind9: A flood of DNS messages over TCP may make the server unstable
Summary: CVE-2024-0760 bind: bind9: A flood of DNS messages over TCP may make the serv...
Keywords:
Status: NEW
Alias: CVE-2024-0760
Deadline: 2024-07-23
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2024-07-19 16:12 UTC by Marco Benatto
Modified: 2024-08-02 00:05 UTC (History)
17 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in the bind9 package, where a malicious client may send many DNS messages over the TCP protocol, leading to instabilities on the server side and potentially causing a denial of service. The server will recover automatically once the attack ceases.
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description Marco Benatto 2024-07-19 16:12:02 UTC
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack.
This vulnerability affects bind versions from 9.18.1 to 9.18.27 and 9.19.0 to 9.19.24.


Note You need to log in before you can comment on or make changes to this bug.