DNS Server Unstable During Malicious DNS Message Flood
CVE-2024-0760
Key Information:
Badges
Summary
The vulnerability CVE-2024-0760 affects the DNS server and can cause it to become unstable during a flood of malicious DNS messages over TCP. It impacts BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through 9.19.24, and 9.18.11-S1 through 9.18.27-S1. This vulnerability could lead to a denial of service and has been exploited in the wild. Ubuntu has released updated packages to fix the issue, and it is recommended for affected systems to update promptly.
Affected Version(s)
BIND 9 9.18.1 <= 9.18.27
BIND 9 9.19.0 <= 9.19.24
BIND 9 9.18.11-S1 <= 9.18.27-S1
Get notified when SecurityVulnerability.io launches alerting 🔔
Well keep you posted 📧
News Articles
SecNews.grΕνημερώσεις BIND διορθώνουν τέσσερα σοβαρά σφάλματα DoS
Η Internet Systems Consortium (ISC) κυκλοφόρησε ενημερώσεις ασφαλείας για το BIND που αντιμετωπίζουν σοβαρά σφάλματα DoS.
Security AffairsBIND updates fix high-severity DoS bugs in the DNS software suite
The Internet Systems Consortium (ISC) released BIND security updates that fixed remotely exploitable DoS bugs in the DNS software suite.
IT-Sicherheit: UNIX und Windows bedroht - Update für IT-Sicherheitswarnung zu Internet Systems Consortium BIND (Risiko: mittel)
Eine für Internet Systems Consortium BIND herausgegebene Sicherheitswarnung hat vom BSI ein Update erhalten. Welche Produkte von der Sicherheitslücke betroffen sind, lesen Sie hier auf news.de.
References
CVSS V3.1
Timeline
- 👾
Exploit known to exist
- 📰
First article discovered by Linux Security
Vulnerability published
Vulnerability Reserved