CVE-2017-3135

medium

Description

Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an inconsistent state leading to either an INSIST assertion failure or an attempt to read through a NULL pointer. Affects BIND 9.8.8, 9.9.3-S1 -> 9.9.9-S7, 9.9.3 -> 9.9.9-P5, 9.9.10b1, 9.10.0 -> 9.10.4-P5, 9.10.5b1, 9.11.0 -> 9.11.0-P2, 9.11.1b1.

References

Advisories
More

https://www.debian.org/security/2017/dsa-3795

https://security.netapp.com/advisory/ntap-20180926-0005/

https://security.gentoo.org/glsa/201708-01

https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03747en_us

http://www.securitytracker.com/id/1037801

http://www.securityfocus.com/bid/96150

http://rhn.redhat.com/errata/RHSA-2017-0276.html

https://kb.isc.org/docs/aa-01453

Details

Source: Mitre, NVD

Published: 2019-01-16

Updated: 2019-10-09

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 5.9

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.35731