AVG-239

Package bind
Status Fixed
Severity High
Type denial of service
Affected 9.11.0.P3-4
Fixed 9.11.1-1
Current 9.13.7-1 [extra]
Ticket None
Created Thu Apr 13 08:01:11 2017
Issue Severity Remote Type Description
CVE-2017-3138 Medium Yes Denial of service
A security issue has been found in the bind named daemon, that will exit with a "require" assertion failure if it receives a null command string on its...
CVE-2017-3137 High Yes Denial of service
A security issue has been found in bind, where a server which is performing recursion can be forced to exit with an assertion failure if it can be caused to...
CVE-2017-3136 Medium Yes Denial of service
A security issue has been found in bind, where an error handling synthesized records could cause an assertion failure when using DNS64 with "break-dnssec yes;".
Date Advisory Package Description
29 Apr 2017 ASA-201704-11 bind denial of service
References
https://deepthought.isc.org/article/AA-01471
https://deepthought.isc.org/article/AA-01465
https://deepthought.isc.org/article/AA-01466