Questions about CVE-2024-11187
Laszlo Szollosi
laszlo.szollosi80 at gmail.com
Tue Mar 4 11:04:06 UTC 2025
Hi Petr,
Thank you for the quick response.
Yes, I said it before, the utilization stayed high. :)
I checked it now and I can see increased network traffic, memory and disk
utilization for the same time period.
Kind Regards,
Laszlo
On Tue, 4 Mar 2025 at 09:14, Petr Špaček <pspacek at isc.org> wrote:
> On 04. 03. 25 9:53, Laszlo Szollosi wrote:
> > Many thanks for your response.
> > By mitigation, I mean we have seen an increase in resource utilization,
> > but it would have been much worse without the 'minimal-responses'
> > setting (reduced impact).
> > By prevention, I mean we would not have had the impact at all.
> > By a spike, I mean the CPU utilization jumps, and then falls. That is
> > not what we experienced. We had the resource consumption continuously
> > for 3 hours on our first incident.
>
> Oh, that's very important 'detail'. If it were CVE-2024-11187 it would
> have to be correlated to increased traffic. If the resource utilization
> lasted so long without corresponding high traffic it is probably a
> different bug.
>
> --
> Petr Špaček
> Internet Systems Consortium
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20250304/e61e47cd/attachment.htm>
More information about the bind-users
mailing list