Red Hat Security Advisory: aardvark-dns security update
A denial of service vulnerability (CVE-2024-8418) exists in the aardvark-dns authoritative DNS server component used in Red Hat Enterprise Linux 9. The flaw involves TCP query handling, which can lead to service disruption. Red Hat has released a security update addressing this issue in aardvark-dns version 1.14.0-1.el9. The update is rated as having moderate security impact. The vulnerability is related to resource exhaustion (CWE-400).
AI Analysis
Technical Summary
CVE-2024-8418 is a vulnerability in the aardvark-dns authoritative DNS server used in Red Hat Enterprise Linux 9. The issue involves a flaw in TCP query handling that can lead to denial of service (DoS). The aardvark-dns server handles A/AAAA container records authoritatively and forwards other requests to configured resolvers. Red Hat has issued a security advisory (RHSA-2025:7094) providing an update to fix this flaw. The advisory covers multiple Red Hat Enterprise Linux 9 variants and architectures, including x86_64, s390x, ppc64le, and aarch64. The vulnerability is classified as CWE-400 (Uncontrolled Resource Consumption).
Potential Impact
Successful exploitation of this vulnerability can cause denial of service by disrupting the DNS server's ability to properly handle TCP queries. This may lead to service unavailability for DNS resolution on affected systems running aardvark-dns. No known exploits in the wild have been reported. The impact is rated as moderate by Red Hat Product Security.
Mitigation Recommendations
Red Hat has released an official security update for aardvark-dns to address CVE-2024-8418. Users should apply the update as soon as possible following Red Hat's guidance at https://access.redhat.com/articles/11258. The update is available for Red Hat Enterprise Linux 9 and its Extended Update Support and Extended Life Cycle variants across supported architectures. Applying this update will remediate the TCP query handling flaw and mitigate the denial of service risk.
Red Hat Security Advisory: aardvark-dns security update
Description
A denial of service vulnerability (CVE-2024-8418) exists in the aardvark-dns authoritative DNS server component used in Red Hat Enterprise Linux 9. The flaw involves TCP query handling, which can lead to service disruption. Red Hat has released a security update addressing this issue in aardvark-dns version 1.14.0-1.el9. The update is rated as having moderate security impact. The vulnerability is related to resource exhaustion (CWE-400).
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2024-8418 is a vulnerability in the aardvark-dns authoritative DNS server used in Red Hat Enterprise Linux 9. The issue involves a flaw in TCP query handling that can lead to denial of service (DoS). The aardvark-dns server handles A/AAAA container records authoritatively and forwards other requests to configured resolvers. Red Hat has issued a security advisory (RHSA-2025:7094) providing an update to fix this flaw. The advisory covers multiple Red Hat Enterprise Linux 9 variants and architectures, including x86_64, s390x, ppc64le, and aarch64. The vulnerability is classified as CWE-400 (Uncontrolled Resource Consumption).
Potential Impact
Successful exploitation of this vulnerability can cause denial of service by disrupting the DNS server's ability to properly handle TCP queries. This may lead to service unavailability for DNS resolution on affected systems running aardvark-dns. No known exploits in the wild have been reported. The impact is rated as moderate by Red Hat Product Security.
Mitigation Recommendations
Red Hat has released an official security update for aardvark-dns to address CVE-2024-8418. Users should apply the update as soon as possible following Red Hat's guidance at https://access.redhat.com/articles/11258. The update is available for Red Hat Enterprise Linux 9 and its Extended Update Support and Extended Life Cycle variants across supported architectures. Applying this update will remediate the TCP query handling flaw and mitigate the denial of service risk.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:7094
- Cve Count
- 1
- Additional Cves
- []
- Cvss Version
- null
Threat ID: 6a4049e927e9c79719835d46
Added to database: 06/27/2026, 22:08:41 UTC
Last enriched: 06/27/2026, 22:39:00 UTC
Last updated: 06/27/2026, 23:11:21 UTC
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.