oss-sec mailing list archives
BIND9 CVE-2019-6477
From: ISC Security Officer <security-officer () isc org>
Date: Wed, 20 Nov 2019 19:52:11 +0000
Today (2019-11-20) ISC announced a vulnerability in our BIND 9 software.
CVE-2019-6477, TCP-pipelined queries can bypass tcp-clients limit
This issue affects BIND 9.11, BIND 9.14, and BIND 9.15.
Our full CVE text can be found at:
https://kb.isc.org/docs/cve-2019-6477
New releases of BIND, including security fixes for this vulnerability,
are available at:
https://www.isc.org/download
Release notes for the new versions can be obtained using the following
links:
https://downloads.isc.org/isc/bind9/9.15.6/RELEASE-NOTES-bind-9.15.6.html
https://downloads.isc.org/isc/bind9/9.14.8/RELEASE-NOTES-bind-9.14.8.html
https://downloads.isc.org/isc/bind9/9.11.13/RELEASE-NOTES-bind-9.11.13.html
--
Cathy Almond
ISC Support
Acting Security Officer
Attachment:
signature.asc
Description: OpenPGP digital signature
Current thread:
- BIND9 CVE-2019-6477 ISC Security Officer (Nov 20)