libbind9.so is vulnerable to an assertion failure during recursive resolution. The vulnerability is due to a bad interaction between DNS64 and serve-stale features when both are enabled. This can potentially leads to Denial of service.
www.openwall.com/lists/oss-security/2024/02/13/1
github.com/isc-projects/bind9/commit/38a03e5ab9676006b0b07510d23635e19998c3a9
kb.isc.org/docs/cve-2023-5679
lists.fedoraproject.org/archives/list/[email protected]/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/
lists.fedoraproject.org/archives/list/[email protected]/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/
lists.fedoraproject.org/archives/list/[email protected]/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/
lists.fedoraproject.org/archives/list/[email protected]/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/
security-tracker.debian.org/tracker/CVE-2023-5679
security.netapp.com/advisory/ntap-20240426-0002/