CVE-2024-0760

2024-07-2300:00:00

ubuntu.com

dns flood

tcp

server instability

isc-dhcp

bind9 libs

unix

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

19.5%

JSON

A malicious client can send many DNS messages over TCP, potentially causing
the server to become unstable while the attack is in progress. The server
may recover after the attack ceases. Use of ACLs will not mitigate the
attack.
This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0 through
9.19.24, and 9.18.11-S1 through 9.18.27-S1.

Notes

Author	Note
alexmurray	As of isc-dhcp-4.4.3-1, isc-dhcp vendors bind9 libs
mdeslaur	in focal and jammy, isc-dhcp uses the bind9-libs package This is unlikely to affect isc-dhcp’s use of bind9-libs and the vendored bind9 libs, marking as negligible This issue doesn’t appear to affect version older than 9.18

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchbind9< 1:9.18.28-0ubuntu0.20.04.1UNKNOWN
ubuntu22.04noarchbind9< 1:9.18.28-0ubuntu0.22.04.1UNKNOWN
ubuntu24.04noarchbind9< 1:9.18.28-0ubuntu0.24.04.1UNKNOWN
ubuntu20.04noarchbind9-libs< anyUNKNOWN
ubuntu22.04noarchbind9-libs< anyUNKNOWN
ubuntu18.04noarchisc-dhcp< anyUNKNOWN
ubuntu24.04noarchisc-dhcp< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	20.04	noarch	bind9	< 1:9.18.28-0ubuntu0.20.04.1	UNKNOWN
ubuntu	22.04	noarch	bind9	< 1:9.18.28-0ubuntu0.22.04.1	UNKNOWN
ubuntu	24.04	noarch	bind9	< 1:9.18.28-0ubuntu0.24.04.1	UNKNOWN
ubuntu	20.04	noarch	bind9-libs	< any	UNKNOWN
ubuntu	22.04	noarch	bind9-libs	< any	UNKNOWN
ubuntu	18.04	noarch	isc-dhcp	< any	UNKNOWN
ubuntu	24.04	noarch	isc-dhcp	< any	UNKNOWN