Project

General

Profile

Bug #6827

bind: Combination of DNS64 and RPZ Can Lead to Crash (CVE-2017-3135)

Added by Alicha CH over 2 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
-
Start date:
02/09/2017
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Affected versions:
Security IDs:

Description

Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an
inconsistent state leading to either an INSIST assertion failure or an attempt to read through a NULL pointer.

Affected versions:

9.9.3-S1 -> 9.9.9-S7, 9.9.3 -> 9.9.9-P5, 9.9.10b1, 9.10.0 -> 9.10.4-P5, 9.10.5b1, 9.11.0 -> 9.11.0-P2, 9.11.1b1

Fixed in:

BIND 9 version 9.9.9-P6
BIND 9 version 9.10.4-P6
BIND 9 version 9.11.0-P3

Reference:

https://kb.isc.org/article/AA-01453


Subtasks

Bug #6828: [3.6] bind: Combination of DNS64 and RPZ Can Lead to Crash (CVE-2017-3135)ClosedNatanael Copa

Bug #6829: [3.5] bind: Combination of DNS64 and RPZ Can Lead to Crash (CVE-2017-3135)ClosedNatanael Copa

Bug #6830: [3.4] bind: Combination of DNS64 and RPZ Can Lead to Crash (CVE-2017-3135)ClosedNatanael Copa

Bug #6831: [3.3] bind: Combination of DNS64 and RPZ Can Lead to Crash (CVE-2017-3135)ClosedNatanael Copa

Bug #6832: [3.2] bind: Combination of DNS64 and RPZ Can Lead to Crash (CVE-2017-3135)ClosedNatanael Copa

History

#1 Updated by Alicha CH over 2 years ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from New to Closed

Also available in: Atom PDF