High severity7.5GHSA Advisory· Published Jul 12, 2025· Updated Apr 15, 2026
CVE-2025-24294
CVE-2025-24294
Description
The attack vector is a potential Denial of Service (DoS). The vulnerability is caused by an insufficient check on the length of a decompressed domain name within a DNS packet.
An attacker can craft a malicious DNS packet containing a highly compressed domain name. When the resolv library parses such a packet, the name decompression process consumes a large amount of CPU resources, as the library does not limit the resulting length of the name.
This resource consumption can cause the application thread to become unresponsive, resulting in a Denial of Service condition.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
resolvRubyGems | < 0.2.3 | 0.2.3 |
resolvRubyGems | >= 0.4.0, < 0.6.2 | 0.6.2 |
resolvRubyGems | >= 0.3.0, < 0.3.1 | 0.3.1 |
Affected products
55- osv-coords54 versionspkg:apk/chainguard/jruby-9.4pkg:apk/chainguard/jruby-9.4-default-rubypkg:apk/chainguard/ruby-3.2pkg:apk/chainguard/ruby-3.2-basepkg:apk/chainguard/ruby-3.2-base-devpkg:apk/chainguard/ruby-3.2-devpkg:apk/chainguard/ruby-3.2-docpkg:apk/chainguard/ruby-3.4pkg:apk/chainguard/ruby-3.4-devpkg:apk/chainguard/ruby-3.4-docpkg:apk/wolfi/jruby-9.4pkg:apk/wolfi/jruby-9.4-default-rubypkg:apk/wolfi/ruby-3.2pkg:apk/wolfi/ruby-3.2-basepkg:apk/wolfi/ruby-3.2-base-devpkg:apk/wolfi/ruby-3.2-devpkg:apk/wolfi/ruby-3.2-docpkg:apk/wolfi/ruby-3.4pkg:apk/wolfi/ruby-3.4-devpkg:apk/wolfi/ruby-3.4-docpkg:gem/resolvpkg:rpm/almalinux/rubypkg:rpm/almalinux/ruby-bundled-gemspkg:rpm/almalinux/ruby-default-gemspkg:rpm/almalinux/ruby-develpkg:rpm/almalinux/ruby-docpkg:rpm/almalinux/rubygem-abrtpkg:rpm/almalinux/rubygem-abrt-docpkg:rpm/almalinux/rubygem-bigdecimalpkg:rpm/almalinux/rubygem-bundlerpkg:rpm/almalinux/rubygem-io-consolepkg:rpm/almalinux/rubygem-irbpkg:rpm/almalinux/rubygem-jsonpkg:rpm/almalinux/rubygem-minitestpkg:rpm/almalinux/rubygem-mysql2pkg:rpm/almalinux/rubygem-mysql2-docpkg:rpm/almalinux/rubygem-pgpkg:rpm/almalinux/rubygem-pg-docpkg:rpm/almalinux/rubygem-power_assertpkg:rpm/almalinux/rubygem-psychpkg:rpm/almalinux/rubygem-raccpkg:rpm/almalinux/rubygem-rakepkg:rpm/almalinux/rubygem-rbspkg:rpm/almalinux/rubygem-rdocpkg:rpm/almalinux/rubygem-rexmlpkg:rpm/almalinux/rubygem-rsspkg:rpm/almalinux/rubygemspkg:rpm/almalinux/rubygems-develpkg:rpm/almalinux/rubygem-test-unitpkg:rpm/almalinux/rubygem-typeprofpkg:rpm/almalinux/ruby-libspkg:rpm/opensuse/ruby2.5&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/ruby2.5&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6pkg:rpm/suse/ruby2.5&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7
< 9.4.13.0-r1+ 53 more
- (no CPE)range: < 9.4.13.0-r1
- (no CPE)range: < 9.4.13.0-r1
- (no CPE)range: < 3.2.8-r3
- (no CPE)range: < 3.2.8-r3
- (no CPE)range: < 3.2.8-r3
- (no CPE)range: < 3.2.8-r3
- (no CPE)range: < 3.2.8-r3
- (no CPE)range: < 3.4.5-r0
- (no CPE)range: < 3.4.5-r0
- (no CPE)range: < 3.4.5-r0
- (no CPE)range: < 9.4.13.0-r1
- (no CPE)range: < 9.4.13.0-r1
- (no CPE)range: < 3.2.8-r3
- (no CPE)range: < 3.2.8-r3
- (no CPE)range: < 3.2.8-r3
- (no CPE)range: < 3.2.8-r3
- (no CPE)range: < 3.2.8-r3
- (no CPE)range: < 3.4.5-r0
- (no CPE)range: < 3.4.5-r0
- (no CPE)range: < 3.4.5-r0
- (no CPE)range: < 0.2.3
- (no CPE)range: < 3.3.10-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 3.3.10-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 3.3.10-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 3.3.10-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 3.3.10-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 0.4.0-1.module_el8.10.0+3799+191214cc
- (no CPE)range: < 0.4.0-1.module_el8.10.0+3799+191214cc
- (no CPE)range: < 3.1.5-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 2.5.22-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 0.7.1-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 1.13.1-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 2.7.2-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 5.20.0-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 0.5.5-1.module_el8.10.0+3799+191214cc
- (no CPE)range: < 0.5.5-1.module_el8.10.0+3799+191214cc
- (no CPE)range: < 1.5.4-1.module_el8.10.0+3799+191214cc
- (no CPE)range: < 1.5.4-1.module_el8.10.0+3799+191214cc
- (no CPE)range: < 2.0.3-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 5.1.2-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 1.7.3-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 13.1.0-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 3.4.0-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 6.6.3.1-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 3.4.4-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 0.3.1-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 3.5.22-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 3.5.22-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 3.6.1-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 0.21.9-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 3.3.10-5.module_el8.10.0+4075+e5f6dad1
- (no CPE)range: < 2.5.9-150000.4.54.1
- (no CPE)range: < 2.5.9-150000.4.54.1
- (no CPE)range: < 2.5.9-150700.24.3.1
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-xh69-987w-hrp8ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-24294ghsaADVISORY
- github.com/ruby/resolv/commit/4c2f71b5e80826506f78417d85b38481c058fb25ghsaWEB
- github.com/rubysec/ruby-advisory-db/blob/master/gems/resolv/CVE-2025-24294.ymlghsaWEB
- www.ruby-lang.org/en/news/2025/07/08/dos-resolv-cve-2025-24294ghsaWEB
- www.ruby-lang.org/en/news/2025/07/08/dos-resolv-cve-2025-24294/nvd
News mentions
0No linked articles in our index yet.