CVE-2019-6468

Description

In BIND Supported Preview Edition, an error in the nxdomain-redirect feature can occur in versions which support EDNS Client Subnet (ECS) features. In those versions which have ECS support, enabling nxdomain-redirect is likely to lead to BIND exiting due to assertion failure. Versions affected: BIND Supported Preview Edition version 9.10.5-S1 -> 9.11.5-S5. ONLY BIND Supported Preview Edition releases are affected.

CVSS breakdown

CVSS 3.0

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

Affected products

ISC / BIND 9 Supported Preview EditionBIND 9 9.10.5-S1 -> 9.11.5-S5 – BIND 9 9.10.5-S1 -> 9.11.5-S5

References

MISChttps://kb.isc.org/docs/cve-2019-6468
MISChttps://www.synology.com/security/advisory/Synology_SA_19_20