CVE-2017-3145 log

Severity High
Remote Yes
Type Denial of service
A use-after-free flaw leading to denial of service was found in the way BIND before 9.11.2.P1, 9.10.6-P1 and 9.9.11-P1 internally handled cleanup operations on upstream recursion fetch contexts. A remote attacker could potentially use this flaw to make named, acting as a DNSSEC validating resolver, exit unexpectedly with an assertion failure via a specially crafted DNS request.
Group Package Affected Fixed Severity Status Ticket
AVG-589 bind 9.11.2-1 9.11.2.P1-1 High Fixed
Date Advisory Group Package Severity Type
18 Jan 2018 ASA-201801-16 AVG-589 bind High denial of service