2 matches found
CVE-2019-6477
CVE-2019-6477 affects BIND (DNS server). It allows TCP-pipelined queries to bypass per-connection tcp-client limits, potentially causing denial of service by exhausting server resources and making the service unresponsive. Affected distributions reference patched releases: Debian DSA-4689-1 notes...
CVE-2019-6477
With pipelining enabled each incoming query on a TCP connection requires a similar resource allocation to a query received via UDP or via TCP without pipelining enabled. A client using a TCP-pipelined connection to a server could consume more resources than the server has been provisioned to...