An error handling certain queries using the nxdomain-redirect feature could cause a REQUIRE assertion failure in db.c
Description
An error in handling certain queries can cause an assertion failure when a server is using the nxdomain-redirect feature to cover a zone for which it is also providing authoritative service. A vulnerable server could be intentionally stopped by an attacker if it was using a configuration that met the criteria for the vulnerability and if the attacker could cause it to accept a query that possessed the required attributes. Please note: This vulnerability affects the "nxdomain-redirect" feature, which is one of two methods of handling NXDOMAIN redirection, and is only available in certain versions of BIND. Redirection using zones of type "redirect" is not affected by this vulnerability. Affects BIND 9.9.8-S1 -> 9.9.8-S3, 9.9.9-S1 -> 9.9.9-S6, 9.11.0-9.11.0-P1.
Affected products
2- ISC/BIND 9v5Range: BIND 9 9.9.8-S1 -> 9.9.8-S3, 9.9.9-S1 -> 9.9.9-S6, 9.11.0-9.11.0-P1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- security.gentoo.org/glsa/201708-01mitrevendor-advisoryx_refsource_GENTOO
- www.securityfocus.com/bid/95388mitrevdb-entryx_refsource_BID
- www.securitytracker.com/id/1037582mitrevdb-entryx_refsource_SECTRACK
- kb.isc.org/article/AA-01442/mitrex_refsource_CONFIRM
- security.netapp.com/advisory/ntap-20180926-0005/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.