CVE-2019-6467

Priority
Description
A programming error in the nxdomain-redirect feature can cause an assertion
failure in query.c if the alternate namespace used by nxdomain-redirect is
a descendant of a zone that is served locally. The most likely scenario
where this might occur is if the server, in addition to performing NXDOMAIN
redirection for recursive clients, is also serving a local copy of the root
zone or using mirroring to provide the root zone, although other
configurations are also possible. Versions affected: BIND 9.12.0-> 9.12.4,
9.14.0. Also affects all releases in the 9.13 development branch.
Notes
mdeslauronly affects 9.12 and later
Package
Source: bind9 (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):not-affected
Ubuntu 14.04 ESM (Trusty Tahr):not-affected (1:9.9.5.dfsg-3ubuntu0.19)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (1:9.10.3.dfsg.P4-8ubuntu1.12)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (1:9.11.3+dfsg-1ubuntu1.5)
Ubuntu 19.04 (Disco Dingo):not-affected (1:9.11.5.P1+dfsg-1ubuntu2)
Ubuntu 19.10 (Eoan Ermine):not-affected (1:9.11.5.P1+dfsg-1ubuntu2)
More Information

Updated: 2019-12-05 18:51:39 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)