CVE-2017-3140

If named is configured to use Response Policy Zones (RPZ) an error processing some rule types can lead to a condition where BIND will endlessly loop while handling a query. Affects BIND 9.9.10, 9.10.5, 9.11.0->9.11.1, 9.9.10-S1, 9.10.5-S1.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
3.7 LOW
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
iscCNA
3.7 LOW
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
VendorProductVersion
iscbind
9.11.0 ≤
𝑥
≤ 9.11.1
iscbind
9.9.10
iscbind
9.9.10:s1
iscbind
9.10.5
iscbind
9.10.5:s1
netappdata_ontap_edge
-
netappelement_software
-
netapponcommand_balance
-
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
bind9
bullseye
1:9.16.50-1~deb11u2
fixed
bullseye (security)
1:9.16.50-1~deb11u1
fixed
bookworm
1:9.18.28-1~deb12u2
fixed
bookworm (security)
1:9.18.28-1~deb12u2
fixed
sid
1:9.20.2-1
fixed
trixie
1:9.20.2-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
bind9
zesty
not-affected
yakkety
not-affected
xenial
not-affected
trusty
not-affected
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/99088
http://www.securitytracker.com/id/1038692
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03772en_us
https://kb.isc.org/docs/aa-01495
https://security.gentoo.org/glsa/201708-01
https://security.netapp.com/advisory/ntap-20180926-0001/
http://www.securityfocus.com/bid/99088
http://www.securitytracker.com/id/1038692
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03772en_us
https://kb.isc.org/docs/aa-01495
https://security.gentoo.org/glsa/201708-01
https://security.netapp.com/advisory/ntap-20180926-0001/