PT-2026-29245 · Dnsdist · Dnsdist

Xavlimsg

Published

2026-01-01

Updated

2026-04-24

CVE-2026-24030

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions DNSdist (affected versions not specified)

Description An attacker may be able to cause DNSdist to allocate excessive memory when handling DNS over QUIC or DNS over HTTP/3 payloads, potentially leading to a denial of service. In some scenarios, the system might experience an out-of-memory condition and terminate the process.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-789

Related Identifiers

CVE-2026-24030

OPENSUSE-SU-2026:10473-1

SUSE-SU-2026:1618-1

Affected Products

Dnsdist

PT-2026-29245 · Dnsdist · Dnsdist

CVE-2026-24030

Weakness Enumeration

Related Identifiers

Affected Products

References · 28