CVE-2017-3142
- Source
- https://cve.org/CVERecord?id=CVE-2017-3142
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-3142.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-3142
- Downstream
- Related
- Published
- 2019-01-16T20:29:00.550Z
- Modified
- 2026-04-16T01:39:43.974351325Z
- Severity
-
- 3.7 (Low) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name may be able to circumvent TSIG authentication of AXFR requests via a carefully constructed request packet. A server that relies solely on TSIG keys for protection with no other ACL protection could be manipulated into: providing an AXFR of a zone to an unauthorized recipient or accepting bogus NOTIFY packets. Affects BIND 9.4.0->9.8.8, 9.9.0->9.9.10-P1, 9.10.0->9.10.5-P1, 9.11.0->9.11.1-P1, 9.9.3-S1->9.9.10-S2, 9.10.5-S1->9.10.5-S2.
- Database specific
{ "unresolved_ranges": [ { "cpe": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "7.0" } ] }, { "cpe": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "7.0" } ] }, { "cpe": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*", "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "7.3" } ] }, { "cpe": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*", "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "7.4" } ] }, { "cpe": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*", "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "7.6" } ] }, { "cpe": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*", "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "7.3" } ] }, { "cpe": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*", "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "7.4" } ] }, { "cpe": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*", "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "7.6" } ] }, { "cpe": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*", "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "7.3" } ] }, { "cpe": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*", "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "7.6" } ] }, { "cpe": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "7.0" } ] } ] }- References
-
- http://www.securityfocus.com/bid/99339
- http://www.securitytracker.com/id/1038809
- https://access.redhat.com/errata/RHSA-2017:1679
- https://access.redhat.com/errata/RHSA-2017:1680
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03772en_us
- https://kb.isc.org/docs/aa-01504
- https://security.netapp.com/advisory/ntap-20190830-0003/
- https://www.debian.org/security/2017/dsa-3904
Affected packages
Git / github.com/isc-projects/bind9
Affected ranges
- Type
- GIT
- Repo
- https://github.com/isc-projects/bind9
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affectedLast affected
- Database specific
{ "cpe": [ "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*", "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" ], "source": "CPE_FIELD", "extracted_events": [ { "introduced": "0" }, { "last_affected": "6.0" }, { "last_affected": "7.5" }, { "last_affected": "8.0" } ] }
Affected versions
Other
ondrej/008bfb6249a5f81d9e02ad4d39fda63fab57a0ad
ondrej/00ce93a69cd809810b82dbb229abf59d8e5850cc
ondrej/067f87f158b633e18a9c6fd0b038d1dc288bcb74
ondrej/074c7cc12c0eda40441926a8a96631c3176824a9
ondrej/1a1413ff5910ace7919bb8db0a1bb1f6e9c9ff7d
ondrej/2438db2eae8baf084615aff3b210ea51cd2f1fe1
ondrej/4098157e6ce98910ff99c58c41c6cf8069b79cc7
ondrej/4281aaab4503116fcf50caa348e1b5e7d414b742
ondrej/42e84e4b97be23f2b3754844e9d4478f48e92b48
ondrej/46caf5f4a4522d42480aee4d5949ea9546f98c2f
ondrej/4d292fc37ff5e99462756352c6028af7d0becf74
ondrej/4f369af51ede0e5ac7b3a14c451c5a41350a61cc
ondrej/53738634c3b511bd78e6626df95ae140631b080c
ondrej/6d06e7e7e585e30b419e4e20815cb8233c48f7b1
ondrej/6d1fdb850516a8d1fbfa853c56a1ef7627d54a72
ondrej/761b47a64845cb647d4fa3362be538eb0e7174d9
ondrej/840e56a979c3719ded668d5aaa04b1bddce465ef
ondrej/9cd2880a82f627bc44ab65fdaa19c2bcd9e61c96
ondrej/a42afbce2e34a5f990517fee7eab013c4adb8c0a
ondrej/a5f554959ec531712f6e14a8cb8c90d87cc27932
ondrej/b177581bb230d89821d1e2e5e91f93bee3fc4192
ondrej/b6298b394e9eaefcfa2458cd56c345d778e99b8e
ondrej/be1e6499742e241d71c7e79434e278a0c89d141b
ondrej/c63b7fad498dbe56710b655bd296a58abba64bb8
ondrej/d7e5f7903de06e504aac4a3822a41d69e159e370
ondrej/e00b13ac6e5a49434fbe534b0cab86b9ee4fbdb5
ondrej/f8a0c0bed6ed629e314d22619510939c61d88b0e
ondrej/fb07c38697c9f4f76dcb921487c4f96813c99b69
v9.*
v9.10.0a1
v9.10.0a2
v9.10.0b1
v9.10.0b2
v9.10.0rc1
v9.11.0a1
v9.11.0a2
v9.11.0a3
v9.12.0a1
v9.12.0b1
v9.12.0b2
v9.12.0rc1
v9.13.0
v9.13.2
v9.13.3
v9.13.4
v9.13.5
v9.13.6
v9.15.0
v9.15.2
v9.15.3
v9.15.4
v9.15.7
v9.15.8
v9.19.0
v9.5.0a1
v9.5.0a2
v9.5.0a3
v9.5.0a4
v9.5.0a5
v9.5.0a6
v9.7.0a1
Git / gitlab.isc.org/isc-projects/bind9
Affected ranges
- Type
- GIT
- Repo
- https://gitlab.isc.org/isc-projects/bind9
- Events
-
IntroducedLast affectedIntroducedLast affectedIntroducedLast affectedIntroducedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affectedLast affected
- Database specific
{ "cpe": [ "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*", "cpe:2.3:a:isc:bind:9.9.0:p1:*:*:*:*:*:*", "cpe:2.3:a:isc:bind:9.9.3:s1:*:*:*:*:*:*", "cpe:2.3:a:isc:bind:9.9.10:s2:*:*:*:*:*:*", "cpe:2.3:a:isc:bind:9.10.5:p1:*:*:*:*:*:*", "cpe:2.3:a:isc:bind:9.10.5:s1:*:*:*:*:*:*", "cpe:2.3:a:isc:bind:9.10.5:s2:*:*:*:*:*:*", "cpe:2.3:a:isc:bind:9.11.1:p1:*:*:*:*:*:*", "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" ], "source": "CPE_FIELD", "extracted_events": [ { "introduced": "9.4.0" }, { "last_affected": "9.8.8" }, { "introduced": "9.9.0" }, { "last_affected": "9.9.10" }, { "introduced": "9.10.0" }, { "last_affected": "9.10.5" }, { "introduced": "9.11.0" }, { "last_affected": "9.11.1" }, { "introduced": "0" }, { "last_affected": "9.9.0-p1" }, { "last_affected": "9.9.3-s1" }, { "last_affected": "9.9.10-s2" }, { "last_affected": "9.10.5-p1" }, { "last_affected": "9.10.5-s1" }, { "last_affected": "9.10.5-s2" }, { "last_affected": "9.11.1-p1" }, { "last_affected": "9.0" } ] }
Affected versions
v9.*
v9.0.0
v9.10.0a1
v9.10.0a2
v9.10.0b1
v9.10.0b2
v9.10.0rc1
v9.10.0rc2
v9.10.1
v9.10.1b1
v9.10.1b2
v9.10.1rc1
v9.10.1rc2
v9.10.2
v9.10.2b1
v9.10.2rc1
v9.10.2rc2
v9.10.3
v9.10.3b1
v9.10.3rc1
v9.10.4
v9.10.4b1
v9.10.4b2
v9.10.4b3
v9.10.4rc1
v9.10.5
v9.10.5-P1
v9.10.5-P2
v9.10.5b1
v9.10.5rc1
v9.10.5rc2
v9.10.5rc3
v9.11.0
v9.11.1
v9.11.1b1
v9.11.1rc1
v9.11.1rc2
v9.11.1rc3
v9.5.0a1
v9.5.0a2
v9.5.0a3
v9.5.0a4
v9.5.0a5
v9.5.0a6
v9.7.0a1
v9.8.0
v9.8.0rc1
v9.8.1b1
v9.8.1rc1
v9.8.2b1
v9.8.2rc1
v9.8.2rc2
v9.8.4b1
v9.8.4rc1
v9.8.5
v9.8.5b1
v9.8.5b2
v9.8.5rc1
v9.8.5rc2
v9.8.6
v9.8.6b1
v9.8.6rc1
v9.8.6rc2
v9.8.7
v9.8.7b1
v9.8.7rc1
v9.8.7rc2
v9.8.8
v9.8.8b1
v9.8.8b2
v9.8.8rc1
v9.8.8rc2
v9.9.0
v9.9.0b1
v9.9.1
v9.9.10
v9.9.10-P1
v9.9.10-P2
v9.9.10b1
v9.9.10rc1
v9.9.10rc2
v9.9.10rc3
v9.9.2b1
v9.9.2rc1
v9.9.3
v9.9.3b1
v9.9.3b2
v9.9.3rc1
v9.9.3rc2
v9.9.4
v9.9.4b1
v9.9.4rc2
v9.9.5
v9.9.5b1
v9.9.5rc1
v9.9.5rc2
v9.9.6
v9.9.6b1
v9.9.6b2
v9.9.6rc1
v9.9.6rc2
v9.9.7
v9.9.7b1
v9.9.7rc1
v9.9.7rc2
v9.9.8
v9.9.8b1
v9.9.8rc1
v9.9.9
v9.9.9b1
v9.9.9b2
v9.9.9rc1