CVE-2016-2776

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2016-2776
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-2776.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2016-2776
Downstream
Related
Published
2016-09-28T10:59:00.157Z
Modified
2026-01-30T08:19:20.514997Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query.

References

Affected packages

Git / gitlab.isc.org/isc-projects/bind9

Affected ranges

Type
GIT
Repo
https://gitlab.isc.org/isc-projects/bind9
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
111ec860a840d09dbd0551044e5fdc37d546c6b6
Last affected
2754d37321d2b3c3506c2d70cbb276a6b1ed991b
Last affected
2799933bc6790356d4b3eebdfe21dc0f87977f14
Last affected
29904d05643601b44cd88110197411afb0a03230
Last affected
2f98c1c2a0b92c83cd9a9e6d53363537f4819c40
Last affected
551bea57432caa68828c5c80722f790e6a658f7c
Last affected
638a11d49e0a9763c1eda26795cab37de40c2788
Last affected
63fbb3ea39094353765c04a6066b9e1d1013992a
Last affected
8058292627cf5827941471ebda7ab9765a5a3ded
Last affected
90f5dc6f4505141f9e94d3bc704da0dd24612219
Last affected
9c1a043383b6cd804d0b4f56aacce345248ec024
Last affected
a23f742c3d767f41bfb1a143b0605a766936c4d9
Last affected
a326778a0a471e3c36a9ed400ffba42a79c9a451
Last affected
b3e2361dba162951931821a1a01b02078c491603
Last affected
b7843f9794be456c53d7dc0b51ead89f2c5d3351
Last affected
bdaecad72d6e5e49998139da55c48e0125806758
Last affected
bf3ebcb44cf23cfd73ce9947d03a075e86c09c56
Last affected
cc152ad50f8255cd7b830026123d86040a1167e2
Last affected
d0c7c4694d6bbf3ad452e6506897d13f0b25f7fa
Last affected
d36f894b881427035c9163b939cb64c75e6fdd7a
Last affected
dca6957b62013f523e54084c92152f571d08f6c0
Last affected
e0815f81205101e6fce3aa87dead307ea9624df3
Last affected
e5e8feeccdf11b17b478d43e9203fb7896edf347
Last affected
ebd72b3f6a18917ce500495b3424781a8da59f14
Last affected
ed70f92dd054be3f0bb3939ea7f0749afaaca94a
Last affected
f5df4974b7b5081c4778d5796127b4d6584e834e
Last affected
f9be8b2189e49a354210237e55054b9399f03c96
Last affected
fb3b6818adaa628147ea308b62070c97483caf65
Last affected
fe66c6b1529a744c3f863119d5ddedb436275c2f

Affected versions

v9.*
v9.10.0a1
v9.10.0a2
v9.10.0b1
v9.10.0b2
v9.5.0a1
v9.5.0a2
v9.5.0a3
v9.5.0a4
v9.5.0a5
v9.5.0a6
v9.7.0a1

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-2776.json"