CVE-2024-24788 : A malformed DNS message in response to a query can cause the Lookup functions to

A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop.

Published 2024-05-08 15:31:12

Updated 2024-06-14 13:15:51

Source Go Project

View at NVD, CVE.org

Products affected by CVE-2024-24788

Please log in to view affected product information.

EPSS FAQ

0.09%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 27 %

Percentile, the proportion of vulnerabilities that are scored at or less

https://groups.google.com/g/golang-announce/c/wkkO4P9stm0

[security] Go 1.22.3 and Go 1.21.10 are released

CVEs referencing this url
http://www.openwall.com/lists/oss-security/2024/05/08/3

oss-security - [security] Go 1.22.3 and Go 1.21.10 are released

CVEs referencing this url
https://security.netapp.com/advisory/ntap-20240614-0001/

CVE-2024-24788 Node.js Vulnerability in NetApp Products | NetApp Product Security
https://go.dev/cl/578375

net: check SkipAdditional error result (578375) · Gerrit Code Review
https://pkg.go.dev/vuln/GO-2024-2824

GO-2024-2824 - Go Packages
https://security.netapp.com/advisory/ntap-20240605-0002/

CVE-2024-24788 Golang Vulnerability in NetApp Products | NetApp Product Security
https://go.dev/issue/66754

net: high cpu usage in extractExtendedRCode · Issue #66754 · golang/go · GitHub

Jump to