VDB
RHSA-2024%3A4960
RHSA-2024%3A4960
PUBLISHED
CVSS 5.900000095367432 MEDIUM
The dnspython stub resolver is vulnerable to a denial of service (DoS) risk if an attacker sends a malicious response forged with the correct address and port before a legitimate one arrives on the UDP port used by dnspython for the query. In such cases, dnspython could either switch to another resolver or abandon the query altogether, potentially leading to service denial for that resolution.
Risk Scores
CVSS 3.1
5.900000095367432
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:364ab3c6fe0009cef4160feb020e180b1c9966d4a8fa9f5dbd41ea5fb1840ece_ppc64le as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:364ab3c6fe0009cef4160feb020e180b1c9966d4a8fa9f5dbd41ea5fb1840ece_ppc64le, openshift4/ose-cluster-node-tuning-rhel9-operator@sha256:364ab3c6fe0009cef4160feb020e180b1c9966d4a8fa9f5dbd41ea5fb1840ece_ppc64le |
| Red Hat | openshift4/ose-installer-artifacts@sha256:90b558c1550d4133eb2b0a726b3adc5d6e0aeaedecd96829742aabb005e8e63a_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | * |
| Red Hat | openshift4/ose-cluster-monitoring-operator@sha256:62ae240a99706bd56500ce72fbd7f43190c979ec9e6401ec21b0142d24edf398_s390x as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-cluster-monitoring-operator@sha256:62ae240a99706bd56500ce72fbd7f43190c979ec9e6401ec21b0142d24edf398_s390x |
| Red Hat | openshift4/ose-operator-lifecycle-manager@sha256:4dcb2a35982c5da2e20749b2f8097ff9012c4e29dd65be09c5ff5e371488acf2_ppc64le as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-operator-lifecycle-manager@sha256:4dcb2a35982c5da2e20749b2f8097ff9012c4e29dd65be09c5ff5e371488acf2_ppc64le |
| Red Hat | openshift4/ose-cloud-credential-operator@sha256:855acfe30cc1629448092fbe314ff78e19c6692119676f61edb78eabd14e259c_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | * |
| Red Hat | openshift4/ose-console@sha256:65627d2b57a7373537bc9a84ff4d5b4976ca4f3558a16b7fa1ce11f708438eff_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-console@sha256:65627d2b57a7373537bc9a84ff4d5b4976ca4f3558a16b7fa1ce11f708438eff_arm64 |
| Red Hat | openshift4/ose-agent-installer-api-server-rhel8@sha256:4534704fa226e5a5822df4970671688600dffb972e63ed824bce8be72cd9861d_ppc64le as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-agent-installer-api-server-rhel8@sha256:4534704fa226e5a5822df4970671688600dffb972e63ed824bce8be72cd9861d_ppc64le |
| Red Hat | openshift4/ose-operator-registry@sha256:7d955b17f20555c182ce8098a0ff5dd6c3c38c4c19f499bf3d50558aaba69e3e_ppc64le as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-operator-registry@sha256:7d955b17f20555c182ce8098a0ff5dd6c3c38c4c19f499bf3d50558aaba69e3e_ppc64le, openshift4/ose-operator-registry@sha256:7d955b17f20555c182ce8098a0ff5dd6c3c38c4c19f499bf3d50558aaba69e3e_ppc64le |
| Red Hat | openshift4/ose-cli-artifacts@sha256:0a3413c43c924981c8f8265651dbaee1be049c1bff7a7ed6c9d01a0b6d27073c_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | * |
| Red Hat | openshift4/ose-cluster-monitoring-operator@sha256:2796d2d9cc1727b5e4b0bde19f98d930c7e1ef66e7f7a5f45b18f0c24db93804_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | *, openshift4/ose-cluster-monitoring-operator@sha256:2796d2d9cc1727b5e4b0bde19f98d930c7e1ef66e7f7a5f45b18f0c24db93804_arm64 |
| Red Hat | openshift4/ose-sdn-rhel8@sha256:c9ee15e364c8f8a85958fb827bfc350197fdab8adb1ef148f15192bccb108c07_s390x as a component of Red Hat OpenShift Container Platform 4.14 | * |
| Red Hat | openshift4/ose-oauth-apiserver-rhel8@sha256:22033325162263af04d125f0e080ec14517f4ef826ecb7d1115578b3e3c28c44_ppc64le as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-oauth-apiserver-rhel8@sha256:22033325162263af04d125f0e080ec14517f4ef826ecb7d1115578b3e3c28c44_ppc64le |
| Red Hat | openshift4/ose-oauth-apiserver-rhel8@sha256:093f870fb97399babcf763d491fd8af2e843e64a529da9ce616863960398320a_amd64 as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-oauth-apiserver-rhel8@sha256:093f870fb97399babcf763d491fd8af2e843e64a529da9ce616863960398320a_amd64, openshift4/ose-oauth-apiserver-rhel8@sha256:093f870fb97399babcf763d491fd8af2e843e64a529da9ce616863960398320a_amd64 |
| Red Hat | openshift4/ose-sdn-rhel8@sha256:c25713e58c24c4fe5f75d4935fe106c9d5dc87eb83e1dcd4f4faa78b6b65c5f8_ppc64le as a component of Red Hat OpenShift Container Platform 4.14 | * |
| Red Hat | openshift4/ose-cluster-baremetal-operator-rhel8@sha256:60b4b93c9236d98723bec00fb0feb6b1ada21b7ab4e976dd9d33ef37847cb6d5_s390x as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-cluster-baremetal-operator-rhel8@sha256:60b4b93c9236d98723bec00fb0feb6b1ada21b7ab4e976dd9d33ef37847cb6d5_s390x |
| Red Hat | openshift4/ose-oauth-apiserver-rhel8@sha256:5f800a2cd683d2fd3314cfedaa546283a1555055e1e5928faf38f0d18eafa738_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-oauth-apiserver-rhel8@sha256:5f800a2cd683d2fd3314cfedaa546283a1555055e1e5928faf38f0d18eafa738_arm64, openshift4/ose-oauth-apiserver-rhel8@sha256:5f800a2cd683d2fd3314cfedaa546283a1555055e1e5928faf38f0d18eafa738_arm64 |
| Red Hat | openshift4/ose-agent-installer-api-server-rhel8@sha256:4534704fa226e5a5822df4970671688600dffb972e63ed824bce8be72cd9861d_ppc64le as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-agent-installer-api-server-rhel8@sha256:4534704fa226e5a5822df4970671688600dffb972e63ed824bce8be72cd9861d_ppc64le, openshift4/ose-agent-installer-api-server-rhel8@sha256:4534704fa226e5a5822df4970671688600dffb972e63ed824bce8be72cd9861d_ppc64le |
| Red Hat | openshift4/ose-ovn-kubernetes-rhel9@sha256:d3a1671bb47e281c6e06d8bafdea8556164ea3453194dc9eaa59b03f6228e1f5_amd64 as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-ovn-kubernetes-rhel9@sha256:d3a1671bb47e281c6e06d8bafdea8556164ea3453194dc9eaa59b03f6228e1f5_amd64, openshift4/ose-ovn-kubernetes-rhel9@sha256:d3a1671bb47e281c6e06d8bafdea8556164ea3453194dc9eaa59b03f6228e1f5_amd64 |
| Red Hat | openshift4/ose-installer@sha256:0e7d8d2447fff39cdd57b15fabb566421e39bad077b1cd6a01c0f85f2fbfe192_arm64 as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-installer@sha256:0e7d8d2447fff39cdd57b15fabb566421e39bad077b1cd6a01c0f85f2fbfe192_arm64 |
| Red Hat | openshift4/ose-multus-whereabouts-ipam-cni-rhel8@sha256:d623e26a823b366f3fdf4a4bb8e672b4f839c45af9bcfdcb61e1591d10820da1_amd64 as a component of Red Hat OpenShift Container Platform 4.14 | openshift4/ose-multus-whereabouts-ipam-cni-rhel8@sha256:d623e26a823b366f3fdf4a4bb8e672b4f839c45af9bcfdcb61e1591d10820da1_amd64 |
…and 288 more
Timeline
- Aug 7, 2024 CVE Published
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2024:4960 advisory
- https://access.redhat.com/security/updates/classification/#important advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2254210 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2262921 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2268273 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2274520 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2274767 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2294000 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2295085 issue
- https://issues.redhat.com/browse/OCPBUGS-33022 advisory
- https://issues.redhat.com/browse/OCPBUGS-33367 advisory
- https://issues.redhat.com/browse/OCPBUGS-36159 advisory
- https://issues.redhat.com/browse/OCPBUGS-36380 advisory
- https://issues.redhat.com/browse/OCPBUGS-36397 advisory
- https://issues.redhat.com/browse/OCPBUGS-36452 advisory
- https://issues.redhat.com/browse/OCPBUGS-36467 advisory
- https://issues.redhat.com/browse/OCPBUGS-36554 advisory
- https://issues.redhat.com/browse/OCPBUGS-36555 advisory
- https://issues.redhat.com/browse/OCPBUGS-36565 advisory
- https://issues.redhat.com/browse/OCPBUGS-36716 advisory
…and 42 more