cvelistv5 - cve-2024-8418

CVE-2024-8418 (GCVE-0-2024-8418)

Vulnerability from cvelistv5 – Published: 2024-09-04 14:24 – Updated: 2025-11-20 20:57

Summary

A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processing of TCP DNS queries. An attacker can exploit this flaw by keeping a TCP connection open indefinitely, causing the server to become unresponsive and resulting in other DNS queries timing out. This issue prevents legitimate users from accessing DNS services, thereby disrupting normal operations and causing service downtime.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-400 - Uncontrolled Resource Consumption

Assigner

redhat

References

URL

Tags

	https://access.redhat.com/errata/RHSA-2025:7094	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-8418	vdb-entryx_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2309683	issue-trackingx_refsource_REDHAT
	https://github.com/containers/aardvark-dns/issues/500
	https://github.com/containers/aardvark-dns/pull/503

Impacted products

Vendor

Product

Version

Affected: 1.12.0 (semver)
Affected: 1.12.1 (semver)

Red Hat	Red Hat Enterprise Linux 9	Unaffected: 2:1.14.0-1.el9 , < * (rpm) cpe:/a:redhat:enterprise_linux:9::appstream
Red Hat	Red Hat Enterprise Linux 10	cpe:/o:redhat:enterprise_linux:10
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9
Red Hat	Red Hat OpenShift Container Platform 4	cpe:/a:redhat:openshift:4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-8418",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-04T15:21:26.948674Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-04T15:21:37.784Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://github.com/containers/aardvark-dns/",
          "defaultStatus": "unaffected",
          "packageName": "containers/aardvark-dns",
          "versions": [
            {
              "status": "affected",
              "version": "1.12.0",
              "versionType": "semver"
            },
            {
              "status": "affected",
              "version": "1.12.1",
              "versionType": "semver"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:9::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "aardvark-dns",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "2:1.14.0-1.el9",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:10"
          ],
          "defaultStatus": "unaffected",
          "packageName": "aardvark-dns",
          "product": "Red Hat Enterprise Linux 10",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "unaffected",
          "packageName": "container-tools:rhel8/aardvark-dns",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "unaffected",
          "packageName": "container-tools:rhel8/containers-common",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9"
          ],
          "defaultStatus": "unaffected",
          "packageName": "containers-common",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:openshift:4"
          ],
          "defaultStatus": "unaffected",
          "packageName": "rhcos",
          "product": "Red Hat OpenShift Container Platform 4",
          "vendor": "Red Hat"
        }
      ],
      "datePublic": "2024-09-04T10:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processing of TCP DNS queries. An attacker can exploit this flaw by keeping a TCP connection open indefinitely, causing the server to become unresponsive and resulting in other DNS queries timing out. This issue prevents legitimate users from accessing DNS services, thereby disrupting normal operations and causing service downtime."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-400",
              "description": "Uncontrolled Resource Consumption",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-20T20:57:31.184Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2025:7094",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2025:7094"
        },
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2024-8418"
        },
        {
          "name": "RHBZ#2309683",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309683"
        },
        {
          "url": "https://github.com/containers/aardvark-dns/issues/500"
        },
        {
          "url": "https://github.com/containers/aardvark-dns/pull/503"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2024-09-03T00:00:00+00:00",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2024-09-04T10:00:00+00:00",
          "value": "Made public."
        }
      ],
      "title": "Containers/aardvark-dns: tcp query handling flaw in aardvark-dns leading to denial of service",
      "workarounds": [
        {
          "lang": "en",
          "value": "It is advised to upgrade aardvark-dns to version 1.12.1 or higher."
        }
      ],
      "x_redhatCweChain": "CWE-400: Uncontrolled Resource Consumption"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2024-8418",
    "datePublished": "2024-09-04T14:24:03.276Z",
    "dateReserved": "2024-09-04T10:38:07.126Z",
    "dateUpdated": "2025-11-20T20:57:31.184Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:containers:aardvark-dns:1.12.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"500D2E84-A5C1-452D-92B3-5F72EA9A3B65\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:containers:aardvark-dns:1.12.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B571A31D-435C-4048-8F0B-06502F177D7C\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processing of TCP DNS queries. An attacker can exploit this flaw by keeping a TCP connection open indefinitely, causing the server to become unresponsive and resulting in other DNS queries timing out. This issue prevents legitimate users from accessing DNS services, thereby disrupting normal operations and causing service downtime.\"}, {\"lang\": \"es\", \"value\": \"Se encontr\\u00f3 una falla en las versiones 1.12.0 y 1.12.1 de Aardvark-dns. Contienen una vulnerabilidad de denegaci\\u00f3n de servicio debido al procesamiento en serie de consultas DNS TCP. Esta falla permite que un cliente malintencionado mantenga una conexi\\u00f3n TCP abierta indefinidamente, lo que hace que se agote el tiempo de espera de otras consultas DNS y se produzca una denegaci\\u00f3n de servicio para todos los dem\\u00e1s contenedores que utilicen aardvark-dns.\"}]",
      "id": "CVE-2024-8418",
      "lastModified": "2024-09-17T20:15:06.710",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}]}",
      "published": "2024-09-04T15:15:15.773",
      "references": "[{\"url\": \"https://access.redhat.com/security/cve/CVE-2024-8418\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2309683\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://github.com/containers/aardvark-dns/issues/500\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Exploit\", \"Issue Tracking\"]}, {\"url\": \"https://github.com/containers/aardvark-dns/pull/503\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\"]}]",
      "sourceIdentifier": "secalert@redhat.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-400\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-8418\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2024-09-04T15:15:15.773\",\"lastModified\":\"2025-05-13T15:15:52.380\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processing of TCP DNS queries. An attacker can exploit this flaw by keeping a TCP connection open indefinitely, causing the server to become unresponsive and resulting in other DNS queries timing out. This issue prevents legitimate users from accessing DNS services, thereby disrupting normal operations and causing service downtime.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una falla en las versiones 1.12.0 y 1.12.1 de Aardvark-dns. Contienen una vulnerabilidad de denegaci\u00f3n de servicio debido al procesamiento en serie de consultas DNS TCP. Esta falla permite que un cliente malintencionado mantenga una conexi\u00f3n TCP abierta indefinidamente, lo que hace que se agote el tiempo de espera de otras consultas DNS y se produzca una denegaci\u00f3n de servicio para todos los dem\u00e1s contenedores que utilicen aardvark-dns.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:containers:aardvark-dns:1.12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"500D2E84-A5C1-452D-92B3-5F72EA9A3B65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:containers:aardvark-dns:1.12.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B571A31D-435C-4048-8F0B-06502F177D7C\"}]}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2025:7094\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-8418\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2309683\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/containers/aardvark-dns/issues/500\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Issue Tracking\"]},{\"url\":\"https://github.com/containers/aardvark-dns/pull/503\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-8418\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-09-04T15:21:26.948674Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-09-04T15:21:31.765Z\"}}], \"cna\": {\"title\": \"Containers/aardvark-dns: tcp query handling flaw in aardvark-dns leading to denial of service\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Moderate\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"versions\": [{\"status\": \"affected\", \"version\": \"1.12.0\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.12.1\", \"versionType\": \"semver\"}], \"packageName\": \"containers/aardvark-dns\", \"collectionURL\": \"https://github.com/containers/aardvark-dns/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.14.0-1.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"aardvark-dns\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"aardvark-dns\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:rhel8/aardvark-dns\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:rhel8/containers-common\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"containers-common\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"rhcos\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-09-03T00:00:00+00:00\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2024-09-04T10:00:00+00:00\", \"value\": \"Made public.\"}], \"datePublic\": \"2024-09-04T10:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2025:7094\", \"name\": \"RHSA-2025:7094\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-8418\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2309683\", \"name\": \"RHBZ#2309683\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://github.com/containers/aardvark-dns/issues/500\"}, {\"url\": \"https://github.com/containers/aardvark-dns/pull/503\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"It is advised to upgrade aardvark-dns to version 1.12.1 or higher.\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processing of TCP DNS queries. An attacker can exploit this flaw by keeping a TCP connection open indefinitely, causing the server to become unresponsive and resulting in other DNS queries timing out. This issue prevents legitimate users from accessing DNS services, thereby disrupting normal operations and causing service downtime.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-400\", \"description\": \"Uncontrolled Resource Consumption\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2025-11-20T20:57:31.184Z\"}, \"x_redhatCweChain\": \"CWE-400: Uncontrolled Resource Consumption\"}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-8418\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-20T20:57:31.184Z\", \"dateReserved\": \"2024-09-04T10:38:07.126Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2024-09-04T14:24:03.276Z\", \"assignerShortName\": \"redhat\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

WID-SEC-W-2025-1036

Vulnerability from csaf_certbund - Published: 2025-05-13 22:00 - Updated: 2025-05-13 22:00

Summary

Red Hat Enterprise Linux (Aardvark-dns): Schwachstelle ermöglicht Denial of Service

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.

Angriff

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat Enterprise Linux ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme

- Linux

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat Enterprise Linux ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-1036 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1036.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-1036 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1036"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:7094 vom 2025-05-13",
        "url": "https://access.redhat.com/errata/RHSA-2025:7094"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat Enterprise Linux (Aardvark-dns): Schwachstelle erm\u00f6glicht Denial of Service",
    "tracking": {
      "current_release_date": "2025-05-13T22:00:00.000+00:00",
      "generator": {
        "date": "2025-05-14T10:24:17.163+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2025-1036",
      "initial_release_date": "2025-05-13T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-05-13T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "aardvark-dns",
                "product": {
                  "name": "Red Hat Enterprise Linux aardvark-dns",
                  "product_id": "T043691",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:aardvark-dns"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9",
                "product": {
                  "name": "Red Hat Enterprise Linux 9",
                  "product_id": "T043757",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-8418",
      "product_status": {
        "known_affected": [
          "T043757",
          "T043691"
        ]
      },
      "release_date": "2025-05-13T22:00:00.000+00:00",
      "title": "CVE-2024-8418"
    }
  ]
}

FKIE_CVE-2024-8418

Vulnerability from fkie_nvd - Published: 2024-09-04 15:15 - Updated: 2025-05-13 15:15

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

References

URL	Tags
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2025:7094
secalert@redhat.com	https://access.redhat.com/security/cve/CVE-2024-8418	Third Party Advisory
secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=2309683	Issue Tracking
secalert@redhat.com	https://github.com/containers/aardvark-dns/issues/500	Exploit, Issue Tracking
secalert@redhat.com	https://github.com/containers/aardvark-dns/pull/503	Issue Tracking

Impacted products

	Vendor	Product	Version
	containers	aardvark-dns	1.12.0
	containers	aardvark-dns	1.12.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:containers:aardvark-dns:1.12.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "500D2E84-A5C1-452D-92B3-5F72EA9A3B65",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:containers:aardvark-dns:1.12.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B571A31D-435C-4048-8F0B-06502F177D7C",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processing of TCP DNS queries. An attacker can exploit this flaw by keeping a TCP connection open indefinitely, causing the server to become unresponsive and resulting in other DNS queries timing out. This issue prevents legitimate users from accessing DNS services, thereby disrupting normal operations and causing service downtime."
    },
    {
      "lang": "es",
      "value": "Se encontr\u00f3 una falla en las versiones 1.12.0 y 1.12.1 de Aardvark-dns. Contienen una vulnerabilidad de denegaci\u00f3n de servicio debido al procesamiento en serie de consultas DNS TCP. Esta falla permite que un cliente malintencionado mantenga una conexi\u00f3n TCP abierta indefinidamente, lo que hace que se agote el tiempo de espera de otras consultas DNS y se produzca una denegaci\u00f3n de servicio para todos los dem\u00e1s contenedores que utilicen aardvark-dns."
    }
  ],
  "id": "CVE-2024-8418",
  "lastModified": "2025-05-13T15:15:52.380",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "secalert@redhat.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-09-04T15:15:15.773",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2025:7094"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/security/cve/CVE-2024-8418"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309683"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Exploit",
        "Issue Tracking"
      ],
      "url": "https://github.com/containers/aardvark-dns/issues/500"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking"
      ],
      "url": "https://github.com/containers/aardvark-dns/pull/503"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-400"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-G5JH-57WM-P79M

Vulnerability from github – Published: 2024-09-04 15:30 – Updated: 2025-05-14 19:15

Summary

Missing connection timeout in Aardvark-dns

Details

A flaw was found in Aardvark-dns versions 1.12.0 and 1.12.1. They contain a denial of service vulnerability due to serial processing of TCP DNS queries. This flaw allows a malicious client to keep a TCP connection open indefinitely, causing other DNS queries to time out and resulting in a denial of service for all other containers using aardvark-dns.

Severity ?

7.5 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

8.7 (High)


                  
                    CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "crates.io",
        "name": "aardvark-dns"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "1.12.0"
            },
            {
              "fixed": "1.12.2"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2024-8418"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-400"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2024-09-04T17:22:36Z",
    "nvd_published_at": "2024-09-04T15:15:15Z",
    "severity": "HIGH"
  },
  "details": "A flaw was found in Aardvark-dns versions 1.12.0 and 1.12.1. They contain a denial of service vulnerability due to serial processing of TCP DNS queries. This flaw allows a malicious client to keep a TCP connection open indefinitely, causing other DNS queries to time out and resulting in a denial of service for all other containers using aardvark-dns.",
  "id": "GHSA-g5jh-57wm-p79m",
  "modified": "2025-05-14T19:15:26Z",
  "published": "2024-09-04T15:30:36Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-8418"
    },
    {
      "type": "WEB",
      "url": "https://github.com/containers/aardvark-dns/issues/500"
    },
    {
      "type": "WEB",
      "url": "https://github.com/containers/aardvark-dns/pull/503"
    },
    {
      "type": "WEB",
      "url": "https://github.com/containers/aardvark-dns/commit/aa109bbd6743abd7027e589cc4b871dd2dce7d50"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2025:7094"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2024-8418"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309683"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/containers/aardvark-dns"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
      "type": "CVSS_V4"
    }
  ],
  "summary": "Missing connection timeout in Aardvark-dns"
}

RHSA-2025:7094

Vulnerability from csaf_redhat - Published: 2025-05-13 08:44 - Updated: 2025-11-21 19:35

Summary

Red Hat Security Advisory: aardvark-dns security update

Notes

Topic

An update for aardvark-dns is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

Authoritative DNS server for A/AAAA container records Forwards other request to configured resolvers. Read more about configuration in `src/backend/mod.rs`. Security Fix(es): * containers/aardvark-dns: TCP Query Handling Flaw in Aardvark-dns Leading to Denial of Service (CVE-2024-8418) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 9 Release Notes linked from the References section.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for aardvark-dns is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Authoritative DNS server for A/AAAA container records  Forwards other request to configured resolvers. Read more about configuration in `src/backend/mod.rs`.\n\nSecurity Fix(es):\n\n* containers/aardvark-dns: TCP Query Handling Flaw in Aardvark-dns Leading to Denial of Service (CVE-2024-8418)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9 Release Notes linked from the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:7094",
        "url": "https://access.redhat.com/errata/RHSA-2025:7094"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.6_release_notes/index",
        "url": "https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.6_release_notes/index"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "2309683",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309683"
      },
      {
        "category": "external",
        "summary": "RHEL-57695",
        "url": "https://issues.redhat.com/browse/RHEL-57695"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_7094.json"
      }
    ],
    "title": "Red Hat Security Advisory: aardvark-dns security update",
    "tracking": {
      "current_release_date": "2025-11-21T19:35:04+00:00",
      "generator": {
        "date": "2025-11-21T19:35:04+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2025:7094",
      "initial_release_date": "2025-05-13T08:44:33+00:00",
      "revision_history": [
        {
          "date": "2025-05-13T08:44:33+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-05-13T08:44:33+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T19:35:04+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                  "product_id": "AppStream-9.6.0.GA",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "aardvark-dns-2:1.14.0-1.el9.src",
                "product": {
                  "name": "aardvark-dns-2:1.14.0-1.el9.src",
                  "product_id": "aardvark-dns-2:1.14.0-1.el9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns@1.14.0-1.el9?arch=src\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "aardvark-dns-2:1.14.0-1.el9.aarch64",
                "product": {
                  "name": "aardvark-dns-2:1.14.0-1.el9.aarch64",
                  "product_id": "aardvark-dns-2:1.14.0-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns@1.14.0-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.aarch64",
                "product": {
                  "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.aarch64",
                  "product_id": "aardvark-dns-debugsource-2:1.14.0-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns-debugsource@1.14.0-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.aarch64",
                "product": {
                  "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.aarch64",
                  "product_id": "aardvark-dns-debuginfo-2:1.14.0-1.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns-debuginfo@1.14.0-1.el9?arch=aarch64\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "aardvark-dns-2:1.14.0-1.el9.ppc64le",
                "product": {
                  "name": "aardvark-dns-2:1.14.0-1.el9.ppc64le",
                  "product_id": "aardvark-dns-2:1.14.0-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns@1.14.0-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.ppc64le",
                "product": {
                  "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.ppc64le",
                  "product_id": "aardvark-dns-debugsource-2:1.14.0-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns-debugsource@1.14.0-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.ppc64le",
                "product": {
                  "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.ppc64le",
                  "product_id": "aardvark-dns-debuginfo-2:1.14.0-1.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns-debuginfo@1.14.0-1.el9?arch=ppc64le\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "aardvark-dns-2:1.14.0-1.el9.x86_64",
                "product": {
                  "name": "aardvark-dns-2:1.14.0-1.el9.x86_64",
                  "product_id": "aardvark-dns-2:1.14.0-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns@1.14.0-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.x86_64",
                "product": {
                  "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.x86_64",
                  "product_id": "aardvark-dns-debugsource-2:1.14.0-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns-debugsource@1.14.0-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.x86_64",
                "product": {
                  "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.x86_64",
                  "product_id": "aardvark-dns-debuginfo-2:1.14.0-1.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns-debuginfo@1.14.0-1.el9?arch=x86_64\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "aardvark-dns-2:1.14.0-1.el9.s390x",
                "product": {
                  "name": "aardvark-dns-2:1.14.0-1.el9.s390x",
                  "product_id": "aardvark-dns-2:1.14.0-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns@1.14.0-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.s390x",
                "product": {
                  "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.s390x",
                  "product_id": "aardvark-dns-debugsource-2:1.14.0-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns-debugsource@1.14.0-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.s390x",
                "product": {
                  "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.s390x",
                  "product_id": "aardvark-dns-debuginfo-2:1.14.0-1.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/aardvark-dns-debuginfo@1.14.0-1.el9?arch=s390x\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-2:1.14.0-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.aarch64"
        },
        "product_reference": "aardvark-dns-2:1.14.0-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-2:1.14.0-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.ppc64le"
        },
        "product_reference": "aardvark-dns-2:1.14.0-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-2:1.14.0-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.s390x"
        },
        "product_reference": "aardvark-dns-2:1.14.0-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-2:1.14.0-1.el9.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.src"
        },
        "product_reference": "aardvark-dns-2:1.14.0-1.el9.src",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-2:1.14.0-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.x86_64"
        },
        "product_reference": "aardvark-dns-2:1.14.0-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.aarch64"
        },
        "product_reference": "aardvark-dns-debuginfo-2:1.14.0-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.ppc64le"
        },
        "product_reference": "aardvark-dns-debuginfo-2:1.14.0-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.s390x"
        },
        "product_reference": "aardvark-dns-debuginfo-2:1.14.0-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-debuginfo-2:1.14.0-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.x86_64"
        },
        "product_reference": "aardvark-dns-debuginfo-2:1.14.0-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.aarch64"
        },
        "product_reference": "aardvark-dns-debugsource-2:1.14.0-1.el9.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.ppc64le"
        },
        "product_reference": "aardvark-dns-debugsource-2:1.14.0-1.el9.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.s390x"
        },
        "product_reference": "aardvark-dns-debugsource-2:1.14.0-1.el9.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-debugsource-2:1.14.0-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.x86_64"
        },
        "product_reference": "aardvark-dns-debugsource-2:1.14.0-1.el9.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.GA"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-8418",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2024-09-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2309683"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processing of TCP DNS queries. An attacker can exploit this flaw by keeping a TCP connection open indefinitely, causing the server to become unresponsive and resulting in other DNS queries timing out. This issue prevents legitimate users from accessing DNS services, thereby disrupting normal operations and causing service downtime.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "containers/aardvark-dns: TCP Query Handling Flaw in Aardvark-dns Leading to Denial of Service",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is classified as moderate severity because it affects the availability of the service rather than compromising data confidentiality or integrity. The CVSS score reflects its impact on system availability, as the DoS attack can lead to significant downtime and service disruption but does not involve unauthorized data access or code execution.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.aarch64",
          "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.ppc64le",
          "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.s390x",
          "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.src",
          "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.x86_64",
          "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.aarch64",
          "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.ppc64le",
          "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.s390x",
          "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.x86_64",
          "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.aarch64",
          "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.ppc64le",
          "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.s390x",
          "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2024-8418"
        },
        {
          "category": "external",
          "summary": "RHBZ#2309683",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309683"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2024-8418",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-8418"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-8418",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-8418"
        },
        {
          "category": "external",
          "summary": "https://github.com/containers/aardvark-dns/issues/500",
          "url": "https://github.com/containers/aardvark-dns/issues/500"
        },
        {
          "category": "external",
          "summary": "https://github.com/containers/aardvark-dns/pull/503",
          "url": "https://github.com/containers/aardvark-dns/pull/503"
        }
      ],
      "release_date": "2024-09-04T10:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-05-13T08:44:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.aarch64",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.ppc64le",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.s390x",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.src",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.x86_64",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.aarch64",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.ppc64le",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.s390x",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.x86_64",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.aarch64",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.ppc64le",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.s390x",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:7094"
        },
        {
          "category": "workaround",
          "details": "It is advised to upgrade aardvark-dns to version 1.12.1 or higher.",
          "product_ids": [
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.aarch64",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.ppc64le",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.s390x",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.src",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.x86_64",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.aarch64",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.ppc64le",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.s390x",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.x86_64",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.aarch64",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.ppc64le",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.s390x",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.aarch64",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.ppc64le",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.s390x",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.src",
            "AppStream-9.6.0.GA:aardvark-dns-2:1.14.0-1.el9.x86_64",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.aarch64",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.ppc64le",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.s390x",
            "AppStream-9.6.0.GA:aardvark-dns-debuginfo-2:1.14.0-1.el9.x86_64",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.aarch64",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.ppc64le",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.s390x",
            "AppStream-9.6.0.GA:aardvark-dns-debugsource-2:1.14.0-1.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "containers/aardvark-dns: TCP Query Handling Flaw in Aardvark-dns Leading to Denial of Service"
    }
  ]
}

OPENSUSE-SU-2024:14319-1

Vulnerability from csaf_opensuse - Published: 2024-09-06 00:00 - Updated: 2024-09-06 00:00

Summary

aardvark-dns-1.12.2-1.1 on GA media

Notes

Title of the patch

aardvark-dns-1.12.2-1.1 on GA media

Description of the patch

These are all security issues fixed in the aardvark-dns-1.12.2-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-14319

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "aardvark-dns-1.12.2-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the aardvark-dns-1.12.2-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-14319",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_14319-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-8418 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-8418/"
      }
    ],
    "title": "aardvark-dns-1.12.2-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-09-06T00:00:00Z",
      "generator": {
        "date": "2024-09-06T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:14319-1",
      "initial_release_date": "2024-09-06T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-09-06T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "aardvark-dns-1.12.2-1.1.aarch64",
                "product": {
                  "name": "aardvark-dns-1.12.2-1.1.aarch64",
                  "product_id": "aardvark-dns-1.12.2-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "aardvark-dns-1.12.2-1.1.ppc64le",
                "product": {
                  "name": "aardvark-dns-1.12.2-1.1.ppc64le",
                  "product_id": "aardvark-dns-1.12.2-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "aardvark-dns-1.12.2-1.1.s390x",
                "product": {
                  "name": "aardvark-dns-1.12.2-1.1.s390x",
                  "product_id": "aardvark-dns-1.12.2-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "aardvark-dns-1.12.2-1.1.x86_64",
                "product": {
                  "name": "aardvark-dns-1.12.2-1.1.x86_64",
                  "product_id": "aardvark-dns-1.12.2-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-1.12.2-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.aarch64"
        },
        "product_reference": "aardvark-dns-1.12.2-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-1.12.2-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.ppc64le"
        },
        "product_reference": "aardvark-dns-1.12.2-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-1.12.2-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.s390x"
        },
        "product_reference": "aardvark-dns-1.12.2-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "aardvark-dns-1.12.2-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.x86_64"
        },
        "product_reference": "aardvark-dns-1.12.2-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-8418",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-8418"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in Aardvark-dns, which is vulnerable to a Denial of Service attack due to the serial processing of TCP DNS queries. An attacker can exploit this flaw by keeping a TCP connection open indefinitely, causing the server to become unresponsive and resulting in other DNS queries timing out. This issue prevents legitimate users from accessing DNS services, thereby disrupting normal operations and causing service downtime.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.aarch64",
          "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.ppc64le",
          "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.s390x",
          "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-8418",
          "url": "https://www.suse.com/security/cve/CVE-2024-8418"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1230153 for CVE-2024-8418",
          "url": "https://bugzilla.suse.com/1230153"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.aarch64",
            "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.ppc64le",
            "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.s390x",
            "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.aarch64",
            "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.ppc64le",
            "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.s390x",
            "openSUSE Tumbleweed:aardvark-dns-1.12.2-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-09-06T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-8418"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-8418 (GCVE-0-2024-8418)

WID-SEC-W-2025-1036

FKIE_CVE-2024-8418

GHSA-G5JH-57WM-P79M

RHSA-2025:7094

OPENSUSE-SU-2024:14319-1

Tags

Sightings

Nomenclature