DescriptionHuzaifa S. Sidhpurwala
2019-04-24 10:59:24 UTC
As per upstream advisory:
In BIND Supported Preview Edition, an error in the nxdomain-redirect feature can occur in versions which support EDNS Client Subnet (ECS) features. In those versions which have ECS support, enabling nxdomain-redirect is likely to lead to BIND exiting due to assertion failure.
If nxdomain-redirect is enabled (via configuration) in a vulnerable BIND release, a malicious party can cause BIND to exit by deliberately triggering the bug.
Comment 1Huzaifa S. Sidhpurwala
2019-04-24 10:59:29 UTC
Acknowledgments:
Name: ISC
Comment 2Huzaifa S. Sidhpurwala
2019-04-24 11:00:47 UTC
Statement:
This issue only affects the special feature preview branch of bind. Bind packages shipped with Red Hat Enterprise Linux are not affected by this flaw.
Comment 3Huzaifa S. Sidhpurwala
2019-04-25 05:24:49 UTC