Vulnerability CVE-2024-33655: Information
Description
The DNS protocol in RFC 1035 and updates allows remote attackers to cause a denial of service (resource consumption) by arranging for DNS queries to be accumulated for seconds, such that responses are later sent in a pulsing burst (which can be considered traffic amplification in some cases), aka the "DNSBomb" issue.
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
|---|---|---|---|---|---|---|
| unbound | sisyphus | 1.20.0-alt1 | 1.20.0-alt1 | ALT-PU-2024-8009-1 | 348471 | Fixed |
| unbound | sisyphus_e2k | 1.20.0-alt1 | 1.20.0-alt1 | ALT-PU-2024-8208-1 | - | Fixed |
| unbound | sisyphus_riscv64 | 1.20.0-alt1 | 1.20.0-alt1 | ALT-PU-2024-8055-1 | - | Fixed |
| unbound | sisyphus_loongarch64 | 1.20.0-alt1 | 1.20.0-alt1 | ALT-PU-2024-8067-1 | - | Fixed |
| unbound | p10 | 1.20.0-alt1 | 1.20.0-alt1 | ALT-PU-2024-8013-2 | 348473 | Fixed |
| unbound | p10_e2k | 1.20.0-alt1 | 1.20.0-alt1 | ALT-PU-2024-8297-1 | - | Fixed |
| unbound | p9 | 1.20.0-alt1 | 1.20.0-alt1 | ALT-PU-2024-8131-2 | 348474 | Fixed |
| unbound | c10f1 | 1.20.0-alt1 | 1.20.0-alt1 | ALT-PU-2024-8086-2 | 348476 | Fixed |
| unbound | c9f2 | 1.20.0-alt1 | 1.20.0-alt1 | ALT-PU-2024-8011-2 | 348477 | Fixed |
| unbound | p11 | 1.20.0-alt1 | 1.20.0-alt1 | ALT-PU-2024-8009-1 | 348471 | Fixed |