CVE-2016-9444 — Improper Input Validation in Bind

CWE-20 — Improper Input Validation12 documents9 sources

Severity

7.5HIGHNVD

EPSS

50.5%

top 2.15%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

ISC Bind9 ISC Bind

Timeline

PublishedJan 12

Latest updateMay 14

Description

named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DS resource record in an answer.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶Debianisc/bind9< 1:9.10.3.dfsg.P4-11+3

▶NVDisc/bind60 versions+59

Patches

Patch: kb.isc.org ↗Patch: kb.isc.org ↗

🔴Vulnerability Details

GHSA

GHSA-gpxq-r8wx-qxgw: named in ISC BIND 9↗2022-05-14

▶

CVEList

CVE-2016-9444: named in ISC BIND 9↗2017-01-12

▶

OSV

CVE-2016-9444: named in ISC BIND 9↗2017-01-12

▶

OSV

bind9 vulnerabilities↗2017-01-12

▶

📋Vendor Advisories

Ubuntu

Bind vulnerabilities↗2017-01-12

▶

Red Hat

bind: assertion failure while handling an unusually-formed DS record response↗2017-01-11

▶

Debian

CVE-2016-9444: bind9 - named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x befor...↗2016

▶

🕵️Threat Intelligence

Fortinet

The Analysis of ISC BIND Response Authority Section RRSIG Missing DoS (CVE-2016-9444)↗2017-02-06

▶

💬Community

Bugzilla

CVE-2016-9444 bind99: bind: assertion failure while handling an unusually-formed DS record response [fedora-all]↗2017-01-12

▶

Bugzilla

CVE-2016-9444 bind: assertion failure while handling an unusually-formed DS record response [fedora-all]↗2017-01-12

▶

Bugzilla

CVE-2016-9444 bind: assertion failure while handling an unusually-formed DS record response↗2017-01-09

▶