VDB

RHSA-2024%3A6013

RHSA-2024%3A6013 PUBLISHED CVSS 7.5 HIGH

A flaw was found in the bind9 package, where a hostname with significant resource records may slow down bind's resolver cache and authoritative zone databases while these records are being added or updated. In addition, client queries for the related hostname may cause the same issue. This vulnerability may lead to a denial of service.

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Red Hatopenshift4/ose-cluster-etcd-rhel9-operator@sha256:7073b6bd16d7520c5913b8a2c7d43c522f30f78b25acaeff083b1bd57de27027_ppc64le as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-cluster-etcd-rhel9-operator@sha256:7073b6bd16d7520c5913b8a2c7d43c522f30f78b25acaeff083b1bd57de27027_ppc64le
Red Hatopenshift4/ose-oauth-proxy-rhel9@sha256:ce1eb1bb7f566629e57fad86ceb165b8138f5bda78b5fafae00d706955cad489_amd64 as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-oauth-proxy-rhel9@sha256:ce1eb1bb7f566629e57fad86ceb165b8138f5bda78b5fafae00d706955cad489_amd64
Red Hatopenshift4/ose-csi-node-driver-registrar-rhel8@sha256:adf48d9003bec4c1d983ffd8508ebd8bc2a312c8d70dea81a6067def8c056fb3_arm64 as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-csi-node-driver-registrar-rhel8@sha256:adf48d9003bec4c1d983ffd8508ebd8bc2a312c8d70dea81a6067def8c056fb3_arm64
Red Hatopenshift4/ose-powervs-machine-controllers-rhel9@sha256:01a3323e2bdda8a79b5e24a9ba817a63cbdcb52a4881569cf7894467faf294ba_amd64 as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-powervs-machine-controllers-rhel9@sha256:01a3323e2bdda8a79b5e24a9ba817a63cbdcb52a4881569cf7894467faf294ba_amd64
Red Hatopenshift4/ose-network-metrics-daemon-rhel9@sha256:8b502fd48bd96e7e9b9d26f3a710f64e7d7fff142e4eb71e2d7d1cdb42a65fb2_amd64 as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-network-metrics-daemon-rhel9@sha256:8b502fd48bd96e7e9b9d26f3a710f64e7d7fff142e4eb71e2d7d1cdb42a65fb2_amd64
Red Hatopenshift4/ose-csi-external-provisioner@sha256:134f4e658a67c91f3b05d9512a42b2d6e9ae511bc285dcd6e8ee4dfe5208020d_arm64 as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-csi-external-provisioner@sha256:134f4e658a67c91f3b05d9512a42b2d6e9ae511bc285dcd6e8ee4dfe5208020d_arm64
Red Hatopenshift4/ose-ironic-static-ip-manager-rhel9@sha256:0a970c6c52c3dc4a605ea00122d45762995771d7785be9100cf77853c820c49b_amd64 as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-ironic-static-ip-manager-rhel9@sha256:0a970c6c52c3dc4a605ea00122d45762995771d7785be9100cf77853c820c49b_amd64
Red Hatopenshift4/ose-installer-altinfra-rhel8@sha256:bfab6ee882ba74c90e12c649fe8d2a516e04910f2e99ce41a7f750c706f1a395_ppc64le as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-installer-altinfra-rhel8@sha256:bfab6ee882ba74c90e12c649fe8d2a516e04910f2e99ce41a7f750c706f1a395_ppc64le
Red Hatopenshift4/ose-cluster-bootstrap-rhel9@sha256:de48fc4cdfbf10953f691c7ea38bc39c1846787a1fde37d4780cf34b31ef3045_s390x as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-cluster-bootstrap-rhel9@sha256:de48fc4cdfbf10953f691c7ea38bc39c1846787a1fde37d4780cf34b31ef3045_s390x
Red Hatopenshift4/ose-cluster-kube-apiserver-rhel9-operator@sha256:0c65df820acfbf0ebfb92a6b6a56414dc00def2787e07868b5fe1ed8133de825_amd64 as a component of Red Hat OpenShift Container Platform 4.15*
Red Hatopenshift4/ose-multus-cni@sha256:b4ed58597ce1fb47b7f942f9cb2e251a7c7304268fb9e2b65ad051dc10b5d2fc_s390x as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-multus-cni@sha256:b4ed58597ce1fb47b7f942f9cb2e251a7c7304268fb9e2b65ad051dc10b5d2fc_s390x
Red Hatopenshift4/ose-apiserver-network-proxy-rhel9@sha256:f3c2c644fb5b070112e401ee95aaf2d3c96f6212700e900031a2bf14cf4cd266_s390x as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-apiserver-network-proxy-rhel9@sha256:f3c2c644fb5b070112e401ee95aaf2d3c96f6212700e900031a2bf14cf4cd266_s390x
Red Hatopenshift4/ose-thanos-rhel8@sha256:c770abb4cba9f0525882b458d18ba9f3a788f8ac80552a7eaf62f952f785f092_amd64 as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-thanos-rhel8@sha256:c770abb4cba9f0525882b458d18ba9f3a788f8ac80552a7eaf62f952f785f092_amd64
Red Hatopenshift4/ose-cluster-api-rhel9@sha256:0dffd3e42c0aa0b7e81437042a562f3e8f74e8fb5588deaafceebb2c4d8baf87_amd64 as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-cluster-api-rhel9@sha256:0dffd3e42c0aa0b7e81437042a562f3e8f74e8fb5588deaafceebb2c4d8baf87_amd64
Red Hatopenshift4/ose-tests@sha256:ed59341badcbe07e2ed24ec7034fcfcb99b81d444db4a7653a14ac1c14a207c6_amd64 as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-tests@sha256:ed59341badcbe07e2ed24ec7034fcfcb99b81d444db4a7653a14ac1c14a207c6_amd64
Red Hatopenshift4/ose-docker-registry-rhel9@sha256:334b68e6e4bb71e9a715b88295dec8087ccbbb49e7e874d3d9d9945a9b8a5f71_s390x as a component of Red Hat OpenShift Container Platform 4.15*
Red Hatopenshift4/ose-console-rhel9-operator@sha256:92b2840035e050e9250620de2bc94df0aecb428b85d473a7fd4238697a854acd_arm64 as a component of Red Hat OpenShift Container Platform 4.15*
Red Hatopenshift4/ose-multus-networkpolicy-rhel9@sha256:407db2502e3e66ca36597287da6715c4b899907842b67e1ba3c6a8a28568495d_ppc64le as a component of Red Hat OpenShift Container Platform 4.15openshift4/ose-multus-networkpolicy-rhel9@sha256:407db2502e3e66ca36597287da6715c4b899907842b67e1ba3c6a8a28568495d_ppc64le
Red Hatopenshift4/ose-cluster-version-rhel9-operator@sha256:c81aae232455e26ebf51ac5e11edf011a214f2dc026c6798490be7630f1932cf_arm64 as a component of Red Hat OpenShift Container Platform 4.15*
Red Hatopenshift4/cloud-network-config-controller-rhel8@sha256:bfcb42fd81d194396d510fe8bbf658c7f3db1c8580901b5281226763fe8723a9_amd64 as a component of Red Hat OpenShift Container Platform 4.15openshift4/cloud-network-config-controller-rhel8@sha256:bfcb42fd81d194396d510fe8bbf658c7f3db1c8580901b5281226763fe8723a9_amd64

…and 644 more

Timeline

  • Sep 5, 2024 CVE Published
  • Apr 28, 2026 CVE Updated
  • Apr 28, 2026 Distribution Patch
  • Apr 28, 2026 Distribution Patch
  • Apr 28, 2026 Security Advisory
  • Apr 28, 2026 Security Advisory
  • Apr 28, 2026 Security Advisory
  • Apr 28, 2026 Security Advisory
  • Apr 28, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›