Vulnerability: Assertion Failure in BIND DNS Resolver with Malformed RRSIGs

Vulnerability: Assertion Failure in BIND DNS Resolver with Malformed RRSIGs

CVE-2019-6469 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

An error in the EDNS Client Subnet (ECS) feature for recursive resolvers can cause BIND to exit with an assertion failure when processing a response that has malformed RRSIGs. Versions affected: BIND 9.10.5-S1 -> 9.11.6-S1 of BIND 9 Supported Preview Edition.

Learn more about our Cis Benchmark Audit For Bind.