CVE-2017-3136

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2017-3136
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-3136.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2017-3136
Downstream
Related
Published
2019-01-16T20:29:00Z
Modified
2025-10-07T23:14:35.299972Z
Severity
  • 5.9 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

A query with a specific set of characteristics could cause a server using DNS64 to encounter an assertion failure and terminate. An attacker could deliberately construct a query, enabling denial-of-service against a server if it was configured to use the DNS64 feature and other preconditions were met. Affects BIND 9.8.0 -> 9.8.8-P1, 9.9.0 -> 9.9.9-P6, 9.9.10b1->9.9.10rc1, 9.10.0 -> 9.10.4-P6, 9.10.5b1->9.10.5rc1, 9.11.0 -> 9.11.0-P3, 9.11.1b1->9.11.1rc1, 9.9.3-S1 -> 9.9.9-S8.

References

Affected packages

Git / gitlab.isc.org/isc-projects/bind9

Affected ranges

Type
GIT
Repo
https://gitlab.isc.org/isc-projects/bind9
Events
Last affected
111ec860a840d09dbd0551044e5fdc37d546c6b6
Last affected
1477c19dd9a347ee19a42dac227f299a4680506f
Last affected
1c59cea1c0e26e2da3f2afb90200bfe9f7748c03
Last affected
2b12043ba0debf1aba08ddd0914aff287e46978a
Last affected
2f98c1c2a0b92c83cd9a9e6d53363537f4819c40
Last affected
341e64a2de908ceec50ed46d243bf3402342735c
Last affected
632f9848811641da54fbb78c38e91a263b03d85a
Last affected
66d4de0075b24a264b19bd594835f66a17f51385
Last affected
853aa4b2e04de28173429fc24780b21fadb5cef5
Last affected
8a2d9ba36c16111ebb3be1a1c61fa0ebc2610c40
Introduced
89e60b8333bbdbee905178fb0d4afaba2d60297e
Last affected
8fc2e36186691698d247ab040b83793a9189de73
Last affected
9596ff0d5d69ef5dacfe431e2204f348804871e8
Last affected
a23f742c3d767f41bfb1a143b0605a766936c4d9
Introduced
63fbb3ea39094353765c04a6066b9e1d1013992a
Last affected
a5e4938f2d3c9d89b3fda65bc2fe6755ecfeea72
Last affected
a6837d0b7879b828a394bfab852dc1b45e7fbc8b
Last affected
ac8984d5aeda3fa63977ed89f6940db36839b0f7
Introduced
3514c49b2fbcdf95b2735878e2487fce9a3ddad5
Last affected
b7843f9794be456c53d7dc0b51ead89f2c5d3351
Last affected
c7fb2ad1605536230063bdbfd31dc9c2874f5ecd
Last affected
d21bca8873d5aa80b309c84127fe1586e469320b
Last affected
d281b39456519db31c6213d010d30d99df8cf852
Last affected
d36f894b881427035c9163b939cb64c75e6fdd7a
Last affected
dca6957b62013f523e54084c92152f571d08f6c0
Last affected
ece26dd7d7f8b61e854ecb59325c18b3d3c8630a

Affected versions

v9.*

v9.8.0
v9.8.1b1
v9.8.1rc1
v9.8.2b1
v9.8.2rc1
v9.8.2rc2
v9.8.3
v9.8.4b1
v9.8.4rc1
v9.8.5
v9.8.5b1
v9.8.5b2
v9.8.5rc1
v9.8.5rc2
v9.8.6
v9.8.6b1
v9.8.6rc1
v9.8.6rc2
v9.8.7
v9.8.7b1
v9.8.7rc1
v9.8.7rc2
v9.8.8
v9.8.8b1
v9.8.8b2
v9.8.8rc1
v9.8.8rc2
v9.9.0
v9.9.1
v9.9.2b1
v9.9.2rc1
v9.9.3b1