oss-sec mailing list archives
BIND9 CVE-2019-6477
From: ISC Security Officer <security-officer () isc org>
Date: Wed, 20 Nov 2019 19:52:11 +0000
Today (2019-11-20) ISC announced a vulnerability in our BIND 9 software. CVE-2019-6477, TCP-pipelined queries can bypass tcp-clients limit This issue affects BIND 9.11, BIND 9.14, and BIND 9.15. Our full CVE text can be found at: https://kb.isc.org/docs/cve-2019-6477 New releases of BIND, including security fixes for this vulnerability, are available at: https://www.isc.org/download Release notes for the new versions can be obtained using the following links: https://downloads.isc.org/isc/bind9/9.15.6/RELEASE-NOTES-bind-9.15.6.html https://downloads.isc.org/isc/bind9/9.14.8/RELEASE-NOTES-bind-9.14.8.html https://downloads.isc.org/isc/bind9/9.11.13/RELEASE-NOTES-bind-9.11.13.html -- Cathy Almond ISC Support Acting Security Officer
Attachment:
signature.asc
Description: OpenPGP digital signature
Current thread:
- BIND9 CVE-2019-6477 ISC Security Officer (Nov 20)