Allele Security Alert
A race condition when discarding malformed packets can cause BIND to exit with an assertion failure
Internet Systems Consortium (ISC)
ISC BIND 9.11.0 -> 9.11.7, 9.12.0 -> 9.12.4-P1, 9.14.0 -> 9.14.2. Also all releases of the BIND 9.13 development branch and version 9.15.0 of the BIND 9.15 development branch. BIND Supported Preview Edition versions 9.11.3-S1 -> 9.11.7-S1.
ISC BIND version 9.11.8
ISC BIND version 9.12.4-P2
ISC BIND version 9.14.3
ISC BIND version 9.15.1
ISC BIND version 9.11.8-S1
Proof of concept
A race condition which may occur when discarding malformed packets can result in BIND exiting due to a REQUIRE assertion failure in dispatch.c.
An attacker who can cause a resolver to perform queries which will be answered by a server which responds with deliberately malformed answers can cause named to exit, denying service to clients.
CVE-2019-6471: A race condition when discarding malformed packets can cause BIND to exit with an assertion failure
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: June 23, 2019