CVE-2016-9147Improper Input Validation in Bind

CWE-20Improper Input Validation12 documents9 sources
Severity
7.5HIGHNVD
EPSS
56.2%
top 1.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
ISC Bind9ISC Bind
Timeline
PublishedJan 12
Latest updateMay 14

Description

named in ISC BIND 9.9.9-P4, 9.9.9-S6, 9.10.4-P4, and 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a response containing an inconsistency among the DNSSEC-related RRsets.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

Debianisc/bind9< 1:9.10.3.dfsg.P4-11+3
Ubuntuisc/bind9< 1:9.9.5.dfsg-3ubuntu0.11+1
NVDisc/bind9.10.4, 9.11.0, 9.9.9+2

Patches

Patch: kb.isc.orgPatch: kb.isc.org

🔴Vulnerability Details

4
GHSA
GHSA-q76v-gxg3-wx5g: named in ISC BIND 92022-05-14
OSV
CVE-2016-9147: named in ISC BIND 92017-01-12
OSV
bind9 vulnerabilities2017-01-12
CVEList
CVE-2016-9147: named in ISC BIND 92017-01-12

📋Vendor Advisories

3
Ubuntu
Bind vulnerabilities2017-01-12
Red Hat
bind: assertion failure while handling a query response containing inconsistent DNSSEC information2017-01-11
Debian
CVE-2016-9147: bind9 - named in ISC BIND 9.9.9-P4, 9.9.9-S6, 9.10.4-P4, and 9.11.0-P1 allows remote att...2016

🕵️Threat Intelligence

1
Fortinet
The Analysis of ISC BIND NSEC Record Handling DoS (CVE-2016-9147)2017-01-25

💬Community

3
Bugzilla
CVE-2016-9147 bind99: bind: assertion failure while handling a query response containing inconsistent DNSSEC information [fedora-all]2017-01-12
Bugzilla
CVE-2016-9147 bind: assertion failure while handling a query response containing inconsistent DNSSEC information [fedora-all]2017-01-12
Bugzilla
CVE-2016-9147 bind: assertion failure while handling a query response containing inconsistent DNSSEC information2017-01-09
CVE-2016-9147 — Improper Input Validation in ISC Bind | cvebase