ALPINE-CVE-2019-6465 — Vulnetix

Try Vulnetix Request Demo

ALPINE-CVE-2019-6465 PUBLISHED CVSS 5.300000190734863 MEDIUM

Controls for zone transfers may not be properly applied to Dynamically Loadable Zones (DLZs) if the zones are writable Versions affected: BIND 9.9.0 -> 9.10.8-P1, 9.11.0 -> 9.11.5-P2, 9.12.0 -> 9.12.3-P2, and versions 9.9.3-S1 -> 9.11.5-S3 of BIND 9 Supported Preview Edition. Versions 9.13.0 -> 9.13.6 of the 9.13 development branch are also affected. Versions prior to BIND 9.9.0 have not been evaluated for vulnerability to CVE-2019-6465.

Risk Scores

CVSS v3.1

5.300000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected Products

Vendor	Product	Versions
Alpine:v3.14	bind	*, 9.9.5-r0, 9.9.4
Alpine:v3.6	bind	9.9.4, 9.10.0-r0, 9.10.0_p2-r0
Alpine:v3.23	bind	0, 9.9.5-r0, 9.9.4
Alpine:v3.20	bind	*, 9.9.4_p1-r0, 9.9.4_p1-r1
Alpine:v3.7	bind	9.11.5-r0, 9.9.5-r0, *
Alpine:v3.17	bind	9.11.1_p1-r0, 9.11.1_p2-r1, 9.11.1_p2-r2
Alpine:v3.16	bind	9.11.1_p2-r1, 9.11.1_p2-r2, 9.11.2-r0
Alpine:v3.10	bind	*, 9.10.0-r0, 9.10.0_p1-r0
Alpine:v3.11	bind	9.10.0-r1, 0, 9.10.0_p1-r1
Alpine:v3.22	bind	9.9.1_p1-r0, 9.12.0-r1, 9.9.2_p2-r0
Alpine:v3.19	bind	9.10.3-r1, 0, 9.10.0-r0
Alpine:v3.21	bind	9.7.2-r0, 9.9.5-r0, 9.9.4
Alpine:v3.15	bind	9.9.1_p1-r0, 9.9.5-r0, 9.9.4
Alpine:v3.18	bind	, , 9.10.2-r1
Alpine:v3.13	bind	0, 9.9.3-r0, *
Alpine:v3.12	bind	9.7.3-r0, 9.9.5-r0, 9.9.4
Alpine:v3.9	bind	9.12.0-r2, *, 9.10.2_p3-r1
Alpine:v3.8	bind	9.10.0-r0, 9.10.0_p1-r0, 9.10.0_p2-r1

Timeline

Oct 9, 2019 CVE Published
Dec 3, 2025 CVE Updated
Apr 30, 2026 Distribution Patch

References

https://security.alpinelinux.org/vuln/CVE-2019-6465 advisory

Open in Interactive Console →