Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [day] [month] [year] [list]
Date: Wed, 20 Nov 2019 19:52:11 +0000
From: ISC Security Officer <>
Subject: BIND9 CVE-2019-6477

Today (2019-11-20) ISC announced a vulnerability in our BIND 9 software.

   CVE-2019-6477, TCP-pipelined queries can bypass tcp-clients limit

This issue affects BIND 9.11, BIND 9.14, and BIND 9.15.

Our full CVE text can be found at:

New releases of BIND, including security fixes for this vulnerability,
are available at:

Release notes for the new versions can be obtained using the following

Cathy Almond
ISC Support
Acting Security Officer

Download attachment "signature.asc" of type "application/pgp-signature" (530 bytes)

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.