Allele Security Alert
An error in QNAME minimization code can cause BIND to exit with an assertion failure
Internet Systems Consortium (ISC)
BIND 9.15.x versions before 9.15.5
BIND 9.14.x versions before 9.14.7
BIND version 9.15.5
BIND version 9.14.7
Proof of concept
A defect in code added to support QNAME minimization can cause named to exit with an assertion failure if a forwarder returns a referral rather than resolving the query.
CVE-2019-6476: An error in QNAME minimization code can cause BIND to exit with an assertion failure – Security Advisories
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: October 31, 2019