buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query.

OSVersionArchitecturePackageVersionFilename
Alpine3.2-mainnoarchbind< 9.10.4_p3UNKNOWN
Alpine3.3-mainnoarchbind< 9.10.4_p3-r0UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Alpine	3.2-main	noarch	bind	< 9.10.4_p3	UNKNOWN
Alpine	3.3-main	noarch	bind	< 9.10.4_p3-r0	UNKNOWN

nessus 42

fedora 6

altlinux 5

exploitpack 1

osv 3

suse 4

f5 2

zdt 1

centos 2

slackware 1

openvas 29

ubuntucve 1

prion 1

metasploit 1

debiancve 1

archlinux 1

redhat 3

ubuntu 1

freebsd_advisory 1

checkpoint_advisories 1

amazon 1

veracode 1

redhatcve 1

cve 1

freebsd 1

cloudfoundry 1

packetstorm 1

exploitdb 1

debian 2

mageia 1

aix 1

ibm 3

threatpost 1

oraclelinux 5

gentoo 1

photon 1

nessus

Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : bind (SSA:2016-271-01)

2016-09-28 00:00:00

Oracle Linux 5 / 6 / 7 : bind (ELSA-2016-1944)

2016-09-29 00:00:00

OracleVM 3.2 : bind (OVMSA-2016-0137)

2016-09-29 00:00:00

fedora

[SECURITY] Fedora 24 Update: bind-9.10.4-2.P3.fc24

2016-10-01 00:53:36

[SECURITY] Fedora 24 Update: bind99-9.9.9-2.P3.fc24

2016-10-03 17:23:31

[SECURITY] Fedora 23 Update: bind-9.10.4-2.P3.fc23

2016-10-24 23:52:28

altlinux

Security fix for the ALT Linux 9 package bind version 9.9.8-alt4

2016-09-27 00:00:00

Security fix for the ALT Linux 6 package bind version 9.3.6-alt7.M60P.2

2016-10-04 00:00:00

Security fix for the ALT Linux 7 package bind version 9.9.8-alt2.M70P.2

2016-09-27 00:00:00

exploitpack

ISC BIND 9 - Denial of Service

2016-10-04 00:00:00

osv

CVE-2016-2776

2016-09-28 10:59:00

bind9 - security update

2016-10-05 00:00:00

bind9 - security update

2016-09-27 00:00:00

suse

Security update for bind (critical)

2016-09-28 11:09:52

Security update for bind (critical)

2016-09-27 21:10:06

Security update for bind (critical)

2016-09-27 22:09:45

SOL18829561 - BIND vulnerability CVE-2016-2776

2016-09-27 00:00:00

K18829561 : BIND vulnerability CVE-2016-2776

2016-09-27 00:00:00

zdt

Bind 9 DNS Server - Denial of Service Exploit

2016-10-04 00:00:00

centos

bind97 security update

2016-09-28 14:01:06

bind, caching security update

2016-09-28 14:00:32

slackware

[slackware-security] bind

2016-09-27 19:49:07

openvas

CentOS Update for bind CESA-2016:1944 centos5

2016-09-29 00:00:00

Slackware: Security Advisory (SSA:2016-271-01)

2022-04-21 00:00:00

SUSE: Security Advisory (SUSE-SU-2016:2405-1)

2021-06-09 00:00:00

ubuntucve

CVE-2016-2776

2016-09-27 00:00:00

prion

Design/Logic Flaw

2016-09-28 10:59:00

metasploit

BIND TSIG Query Denial of Service

2017-08-26 15:41:10

debiancve

CVE-2016-2776

2016-09-28 10:59:00

archlinux

[ASA-201609-29] bind: denial of service

2016-09-27 00:00:00

redhat

(RHSA-2016:1944) Important: bind security update

2016-09-28 00:00:00

(RHSA-2016:1945) Important: bind97 security update

2016-09-28 00:00:00

(RHSA-2016:2099) Important: bind security update

2016-10-25 07:38:10

ubuntu

Bind vulnerability

2016-09-27 00:00:00

freebsd_advisory

FreeBSD-SA-16:28.bind

2016-10-10 00:00:00

checkpoint_advisories

DNS Server Bind 9 Response Message Rendering Denial of Service (CVE-2016-2776)

2016-10-05 00:00:00

amazon

Important: bind

2016-09-28 15:45:00

veracode

Denial Of Service (DoS)

2019-01-15 09:13:15

redhatcve

CVE-2016-2776

2020-04-09 09:15:08

cve

CVE-2016-2776

2016-09-28 10:59:00

freebsd

BIND -- Remote Denial of Service vulnerability

2016-09-27 00:00:00

cloudfoundry

USN-3088-1: Bind vulnerability | Cloud Foundry

2016-12-13 00:00:00

packetstorm

BIND 9 DNS Server Denial Of Service

2016-10-04 00:00:00

exploitdb

ISC BIND 9 - Denial of Service

2016-10-04 00:00:00

debian

[SECURITY] [DLA 645-1] bind9 security update

2016-10-05 17:44:33

[SECURITY] [DSA 3680-1] bind9 security update

2016-09-27 18:52:22

mageia

Updated bind packages fix security vulnerability

2016-10-04 15:20:54

aix

Vulnerabilities in BIND impact AIX,Vulnerabilities in BIND impact VIOS

2016-11-18 08:19:36

ibm

Security Bulletin: Vulnerabilities in bind affect PowerKVM (CVE-2016-2776, CVE-2016-8864)

2018-06-18 01:33:47

Security Bulletin: Multiple vulnerabilities in BIND affects IBM Netezza Host Management

2019-10-18 03:10:29

Security Bulletin: IBM i is affected by networking BIND vulnerabilities (CVE-2016-2775, CVE-2016-2776, CVE-2016-8864 and CVE-2016-6170)

2019-12-18 14:26:38

threatpost

ISC Patches Critical Error Condition in BIND

2016-09-28 16:29:53

oraclelinux

bind security update

2016-11-09 00:00:00

bind security update

2016-09-28 00:00:00

bind97 security update

2016-09-28 00:00:00

gentoo

BIND: Multiple vulnerabilities

2016-10-11 00:00:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2017-0021

2017-06-22 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
OpenSource

@2024 Vulners Inc

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.973 High

EPSS

Percentile

99.8%

JSON

Related for ALPINE:CVE-2016-2776