CVE-2016-6170

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2016-6170
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-6170.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2016-6170
Downstream
Related
Published
2016-07-06T14:59:05.597Z
Modified
2026-04-11T12:02:45.655043Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x through 9.11.0b1 allows primary DNS servers to cause a denial of service (secondary DNS server crash) via a large AXFR response, and possibly allows IXFR servers to cause a denial of service (IXFR client crash) via a large IXFR response and allows remote authenticated users to cause a denial of service (primary DNS server crash) via a large UPDATE message.

Database specific 
{
    "unresolved_ranges": [
        {
            "cpe": "cpe:2.3:a:isc:bind:9.9.9:beta1:*:*:*:*:*:*",
            "extracted_events": [
                {
                    "last_affected": "9.9.9-beta1"
                }
            ],
            "source": "CPE_FIELD"
        },
        {
            "cpe": "cpe:2.3:a:isc:bind:9.9.9:beta2:*:*:*:*:*:*",
            "extracted_events": [
                {
                    "last_affected": "9.9.9-beta2"
                }
            ],
            "source": "CPE_FIELD"
        },
        {
            "cpe": "cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*",
            "extracted_events": [
                {
                    "last_affected": "5.0"
                }
            ],
            "source": "CPE_FIELD"
        },
        {
            "cpe": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
            "extracted_events": [
                {
                    "last_affected": "7.0"
                }
            ],
            "source": "CPE_FIELD"
        }
    ]
}
References

Affected packages

Git / github.com/isc-projects/bind9

Affected ranges

Type
GIT
Repo
https://github.com/isc-projects/bind9
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
6d06e7e7e585e30b419e4e20815cb8233c48f7b1
Database specific 
{
    "cpe": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "6.0"
        }
    ],
    "source": "CPE_FIELD"
}

Affected versions

Other
ondrej/008bfb6249a5f81d9e02ad4d39fda63fab57a0ad
ondrej/00ce93a69cd809810b82dbb229abf59d8e5850cc
ondrej/1a1413ff5910ace7919bb8db0a1bb1f6e9c9ff7d
ondrej/4d292fc37ff5e99462756352c6028af7d0becf74
ondrej/6d06e7e7e585e30b419e4e20815cb8233c48f7b1
ondrej/6d1fdb850516a8d1fbfa853c56a1ef7627d54a72
ondrej/761b47a64845cb647d4fa3362be538eb0e7174d9
ondrej/840e56a979c3719ded668d5aaa04b1bddce465ef
ondrej/a42afbce2e34a5f990517fee7eab013c4adb8c0a
ondrej/a5f554959ec531712f6e14a8cb8c90d87cc27932
ondrej/b177581bb230d89821d1e2e5e91f93bee3fc4192
ondrej/be1e6499742e241d71c7e79434e278a0c89d141b
ondrej/c63b7fad498dbe56710b655bd296a58abba64bb8
ondrej/d7e5f7903de06e504aac4a3822a41d69e159e370
ondrej/fb07c38697c9f4f76dcb921487c4f96813c99b69
v9.*
v9.10.0a1
v9.10.0a2
v9.10.0b1
v9.10.0b2
v9.10.0rc1
v9.11.0a1
v9.11.0a2
v9.11.0a3
v9.12.0a1
v9.12.0b1
v9.12.0b2
v9.12.0rc1
v9.13.0
v9.13.2
v9.13.3
v9.13.4
v9.13.5
v9.13.6
v9.15.0
v9.15.2
v9.15.3
v9.15.4
v9.15.7
v9.15.8
v9.19.0
v9.5.0a1
v9.5.0a2
v9.5.0a3
v9.5.0a4
v9.5.0a5
v9.5.0a6
v9.7.0a1

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-6170.json"

Git / gitlab.isc.org/isc-projects/bind9

Affected ranges

Type
GIT
Repo
https://gitlab.isc.org/isc-projects/bind9
Events
Introduced
19d6c56085e97cf4ac559cdc27edd624127bcb32
Last affected
2d6d4babba5b5d2237bd37c0e4c3c993b7efd255
Introduced
63fbb3ea39094353765c04a6066b9e1d1013992a
Last affected
2799933bc6790356d4b3eebdfe21dc0f87977f14
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
b7843f9794be456c53d7dc0b51ead89f2c5d3351
Last affected
9833cd85a811d3a4313948f324d3906937633e65
Last affected
a5e4938f2d3c9d89b3fda65bc2fe6755ecfeea72
Last affected
632f9848811641da54fbb78c38e91a263b03d85a
Last affected
dca6957b62013f523e54084c92152f571d08f6c0
Last affected
111ec860a840d09dbd0551044e5fdc37d546c6b6
Last affected
a23f742c3d767f41bfb1a143b0605a766936c4d9
Database specific 
{
    "cpe": [
        "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
        "cpe:2.3:a:isc:bind:9.9.9:-:*:*:*:*:*:*",
        "cpe:2.3:a:isc:bind:9.9.9:p1:*:*:*:*:*:*",
        "cpe:2.3:a:isc:bind:9.10.4:-:*:*:*:*:*:*",
        "cpe:2.3:a:isc:bind:9.10.4:p1:*:*:*:*:*:*",
        "cpe:2.3:a:isc:bind:9.11.0:a1:*:*:*:*:*:*",
        "cpe:2.3:a:isc:bind:9.11.0:a2:*:*:*:*:*:*",
        "cpe:2.3:a:isc:bind:9.11.0:a3:*:*:*:*:*:*",
        "cpe:2.3:a:isc:bind:9.11.0:b1:*:*:*:*:*:*"
    ],
    "extracted_events": [
        {
            "introduced": "9.0"
        },
        {
            "last_affected": "9.9.8"
        },
        {
            "introduced": "9.10.0"
        },
        {
            "last_affected": "9.10.3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "9.9.9-NA"
        },
        {
            "last_affected": "9.9.9-p1"
        },
        {
            "last_affected": "9.10.4-NA"
        },
        {
            "last_affected": "9.10.4-p1"
        },
        {
            "last_affected": "9.11.0-a1"
        },
        {
            "last_affected": "9.11.0-a2"
        },
        {
            "last_affected": "9.11.0-a3"
        },
        {
            "last_affected": "9.11.0-b1"
        }
    ],
    "source": "CPE_FIELD"
}

Affected versions

v9.*
v9.10.0a1
v9.10.0a2
v9.10.0b1
v9.10.0b2
v9.10.0rc1
v9.10.0rc2
v9.10.1
v9.10.1b1
v9.10.1b2
v9.10.1rc1
v9.10.1rc2
v9.10.2
v9.10.2b1
v9.10.2rc1
v9.10.2rc2
v9.10.3
v9.10.3b1
v9.10.3rc1
v9.10.4
v9.10.4b1
v9.10.4b2
v9.10.4b3
v9.10.4rc1
v9.11.0a1
v9.11.0a2
v9.11.0a3
v9.11.0b1
v9.11.0b2
v9.11.0b3
v9.5.0a1
v9.5.0a2
v9.5.0a3
v9.5.0a4
v9.5.0a5
v9.5.0a6
v9.7.0a1
v9.9.0
v9.9.0rc3
v9.9.0rc4
v9.9.1
v9.9.2b1
v9.9.2rc1
v9.9.3
v9.9.3b1
v9.9.3b2
v9.9.3rc1
v9.9.3rc2
v9.9.4
v9.9.4b1
v9.9.4rc2
v9.9.5
v9.9.5b1
v9.9.5rc1
v9.9.5rc2
v9.9.6
v9.9.6b1
v9.9.6b2
v9.9.6rc1
v9.9.6rc2
v9.9.7
v9.9.7b1
v9.9.7rc1
v9.9.7rc2
v9.9.8
v9.9.8b1
v9.9.8rc1
v9.9.9
v9.9.9b1
v9.9.9b2
v9.9.9rc1

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-6170.json"