Allele Security Alert
Supported Preview Edition can exit with an assertion failure if nxdomain-redirect is used
Internet Systems Consortium (ISC)
BIND Supported Preview Edition 9.10.5-S1 to 9.11.5-S5
BIND Supported Preview Edition 9.11.5-S6
BIND Supported Preview Edition 9.11.6-S1
Proof of concept
In BIND Supported Preview Edition, an error in the nxdomain-redirect feature can occur in versions which support EDNS Client Subnet (ECS) features. In those versions which have ECS support, enabling nxdomain-redirect is likely to lead to BIND exiting due to assertion failure.
CVE-2019-6468: BIND Supported Preview Edition can exit with an assertion failure if nxdomain-redirect is used
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: April 27, 2019