What is the vulnerability ID of this BIND vulnerability?

The vulnerability ID of this BIND vulnerability is CVE-2019-6468.

What is the severity of CVE-2019-6468?

The severity of CVE-2019-6468 is high with a CVSS score of 7.5.

Which versions of BIND are affected by CVE-2019-6468?

BIND version 9.10.5-s1 and 9.11.5-s5 in the Supported Preview Edition are affected by CVE-2019-6468.

What is the impact of CVE-2019-6468?

Enabling the nxdomain-redirect feature with ECS support in the affected versions of BIND can lead to BIND exiting due to assertion failure.

How can I fix CVE-2019-6468?

Updating to a version of BIND that does not have the vulnerability is the recommended fix for CVE-2019-6468.

Vulnerability/
CVE-2019-6468

high

7.5

CWE

617

9/10/2019

16/9/2024

CVE-2019-6468: BIND Supported Preview Edition can exit with an assertion failure if nxdomain-redirect is used

First published: Wed Oct 09 2019(Updated: )

In BIND Supported Preview Edition, an error in the nxdomain-redirect feature can occur in versions which support EDNS Client Subnet (ECS) features. In those versions which have ECS support, enabling nxdomain-redirect is likely to lead to BIND exiting due to assertion failure. Versions affected: BIND Supported Preview Edition version 9.10.5-S1 -> 9.11.5-S5. ONLY BIND Supported Preview Edition releases are affected.

Credit: security-officer@isc.org

Affected Software	Affected Version	How to fix
ISC BIND	=9.10.5-s1
ISC BIND	=9.11.5-s5

Remedy

Upgrade to the patched release most closely related to your current version of BIND: BIND Supported Preview Edition is a special feature preview branch of BIND provided to eligible ISC support customers. + BIND 9.11.5-S6 + BIND 9.11.6-S1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID of this BIND vulnerability?
The vulnerability ID of this BIND vulnerability is CVE-2019-6468.
What is the severity of CVE-2019-6468?
The severity of CVE-2019-6468 is high with a CVSS score of 7.5.
Which versions of BIND are affected by CVE-2019-6468?
BIND version 9.10.5-s1 and 9.11.5-s5 in the Supported Preview Edition are affected by CVE-2019-6468.
What is the impact of CVE-2019-6468?
Enabling the nxdomain-redirect feature with ECS support in the affected versions of BIND can lead to BIND exiting due to assertion failure.
How can I fix CVE-2019-6468?
Updating to a version of BIND that does not have the vulnerability is the recommended fix for CVE-2019-6468.

collector/nvd-index
agent/references
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/title
agent/remedy
agent/weakness
agent/last-modified-date
agent/author
agent/type
agent/description
agent/first-publish-date
agent/tags
agent/event
vendor/isc
canonical/isc bind
version/isc bind/9.10.5-s1
version/isc bind/9.11.5-s5

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.