Description
An error in the EDNS Client Subnet (ECS) feature for recursive resolvers can cause BIND to exit with an assertion failure when processing a response that has malformed RRSIGs. Versions affected: BIND 9.10.5-S1 -> 9.11.6-S1 of BIND 9 Supported Preview Edition.
CVSS breakdown
CVSS 3.0
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected products
- ISC / BIND 9 Supported Preview EditionBIND 9.10.5-S1 -> 9.11.6-S1 of BIND 9 Supported Preview Edition. – BIND 9.10.5-S1 -> 9.11.6-S1 of BIND 9 Supported Preview Edition.