Allele Security Alert
ASA-2019-00369
Identifier(s)
ASA-2019-00369, CVE-2019-6471
Title
A race condition when discarding malformed packets can cause BIND to exit with an assertion failure
Vendor(s)
Internet Systems Consortium (ISC)
Product(s)
ISC BIND
Affected version(s)
ISC BIND 9.11.0 -> 9.11.7, 9.12.0 -> 9.12.4-P1, 9.14.0 -> 9.14.2. Also all releases of the BIND 9.13 development branch and version 9.15.0 of the BIND 9.15 development branch. BIND Supported Preview Edition versions 9.11.3-S1 -> 9.11.7-S1.
Fixed version(s)
ISC BIND version 9.11.8
ISC BIND version 9.12.4-P2
ISC BIND version 9.14.3
ISC BIND version 9.15.1
ISC BIND version 9.11.8-S1
Proof of concept
Unknown
Description
A race condition which may occur when discarding malformed packets can result in BIND exiting due to a REQUIRE assertion failure in dispatch.c.
An attacker who can cause a resolver to perform queries which will be answered by a server which responds with deliberately malformed answers can cause named to exit, denying service to clients.
Technical details
Unknown
Workaround
Unknown
Credits
CERN
Reference(s)
CVE-2019-6471: A race condition when discarding malformed packets can cause BIND to exit with an assertion failure
https://kb.isc.org/docs/cve-2019-6471
CVE-2019-6471
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6471
CVE-2019-6471
https://nvd.nist.gov/vuln/detail/CVE-2019-6471
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: June 23, 2019