CVE-2017-3135

Published Jan 16, 2019

Last updated 5 years ago

CVSS medium 5.9

Overview

Description: Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an inconsistent state leading to either an INSIST assertion failure or an attempt to read through a NULL pointer. Affects BIND 9.8.8, 9.9.3-S1 -> 9.9.9-S7, 9.9.3 -> 9.9.9-P5, 9.9.10b1, 9.10.0 -> 9.10.4-P5, 9.10.5b1, 9.11.0 -> 9.11.0-P2, 9.11.1b1.
Source: security-officer@isc.org
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 5.9
Impact score: 3.6
Exploitability score: 2.2
Vector string: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-476

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:isc:bind:9.9.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A7BE793-7717-4019-8F50-158C309E48B2"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.9.3:s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FCC182A9-5989-4A87-A3BA-F1CFAEDC95E2"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.9.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3AF19353-E509-4864-ADDD-39F3012A262B"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.9.9:p5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "012A3C08-2A0F-4168-9DE0-F609707E4C2E"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.9.9:s7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7132A53F-7DF2-4B79-AC86-75A0C73843B4"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.9.10:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C8F0163-FF32-44E0-B05C-F89263CD56A7"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92ECA27E-4248-49BD-A84C-4854CCA19AC5"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.4:p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB2D2132-62E8-4E73-A0BF-4790DAFC5558"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.4:p2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E253BD9F-25B8-42E7-BEAB-E843381ED155"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.4:p3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B5E42E5-27C6-4D6F-B7DC-903B10BF2017"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.4:p4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7E211374-A4F5-41D4-A89E-E6522E9D0DFB"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.4:p5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "21CC7BA7-6D75-4561-ACF3-F1F61A0CBA62"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.10.5:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "278142AB-9CE9-4DAC-A0C5-A3E05A715829"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.11.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3160C5ED-75EA-47B2-998E-EDFC46B37DDA"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.11.0:p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "086C327B-DF9F-4D4E-A538-1E29FEDC34C5"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.11.0:p2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1440B408-76B6-4FA7-899D-E28049A37704"
          },
          {
            "criteria": "cpe:2.3:a:isc:bind:9.11.1:beta1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE6ED392-74B9-487E-83B0-ECAAEEAB3AB3"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "98381E61-F082-4302-B51F-5648884F998B"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D99A687E-EAE6-417E-A88E-D0082BC194CD"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B353CE99-D57C-465B-AAB0-73EF581127D1"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8442C20-41F9-47FD-9A12-E724D3A31FD7"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF77CDCF-B9C9-427D-B2BF-36650FB2148C"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24C0F4E1-C52C-41E0-9F14-F83ADD5CC7ED"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B76AA310-FEC7-497F-AF04-C3EC1E76C4CC"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:netapp:data_ontap_edge:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E0C4B1E5-75BF-43AE-BBAC-0DD4124C71ED"
          },
          {
            "criteria": "cpe:2.3:a:netapp:element_software_management_node:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E902EEC6-9A41-4FBC-8D81-891DF846A5CB"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References