CVE-2017-3137

🗓️ 16 Jan 2019 20:00:00Reported by iscType

CVE-2017-3137: BIND 9.9.9-P6 to 9.9.10rc1, 9.10.4-P6 to 9.10.5rc1, 9.11.0-P3 to 9.11.1rc

Reporter	Title	Published	Views	Family All 144
ALT Linux	Security fix for the ALT Linux 9 package bind version 9.10.4.P8-alt1	12 Apr 201700:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package bind version 9.10.4.P8-alt1	12 Apr 201700:00	–	altlinux
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in coreutils, sudo, jasper, bind, bash, libtirpc, nss and nss-util affect IBM SmartCloud Entry	19 Jul 202000:49	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by Open Source packages vulnerabilities	16 Jun 201822:04	–	ibm
IBM Security Bulletins	Security Bulletin: IBM i is affected by networking BIND vulnerabilities (CVE-2017-3136, CVE-2017-3137 and CVE-2017-3138)	18 Dec 201914:26	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple packages as used in IBM Security QRadar Packet Capture are vulnerable to various security issues.	28 Oct 202017:16	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in OpenSource ISC Bind affects IBM Netezza Host Management	18 Oct 201903:10	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in BIND affect Power Hardware Management Console	23 Sep 202101:45	–	ibm
ATTACKERKB	Backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858	30 Oct 201900:00	–	attackerkb
Amazon	Important: bind	27 Apr 201700:00	–	amazon

NVD

Node

isc bindMatch9.9.9p6

isc bindMatch9.9.9s8

isc bindMatch9.9.10beta1

isc bindMatch9.9.10rc1

isc bindMatch9.10.4p6

isc bindMatch9.10.5b1

isc bindMatch9.10.5rc1

isc bindMatch9.11.0p3

isc bindMatch9.11.1b1

isc bindMatch9.11.1rc1

Node

redhat enterprise_linux_desktopMatch6.0

redhat enterprise_linux_desktopMatch7.0

redhat enterprise_linux_serverMatch6.0

redhat enterprise_linux_serverMatch7.0

redhat enterprise_linux_server_ausMatch6.2

redhat enterprise_linux_server_ausMatch6.4

redhat enterprise_linux_server_ausMatch6.5

redhat enterprise_linux_server_ausMatch6.6

redhat enterprise_linux_server_ausMatch7.2

redhat enterprise_linux_server_ausMatch7.3

redhat enterprise_linux_server_ausMatch7.4

redhat enterprise_linux_server_ausMatch7.6

redhat enterprise_linux_server_eusMatch6.7

redhat enterprise_linux_server_eusMatch7.2

redhat enterprise_linux_server_eusMatch7.3

redhat enterprise_linux_server_eusMatch7.4

redhat enterprise_linux_server_eusMatch7.5

redhat enterprise_linux_server_eusMatch7.6

redhat enterprise_linux_server_tusMatch6.5

redhat enterprise_linux_server_tusMatch6.6

redhat enterprise_linux_server_tusMatch7.2

redhat enterprise_linux_server_tusMatch7.3

redhat enterprise_linux_server_tusMatch7.6

redhat enterprise_linux_workstationMatch6.0

redhat enterprise_linux_workstationMatch7.0

Node

netapp data_ontap_edgeMatch-

netapp element_softwareMatch-

netapp oncommand_balanceMatch-

Node

debian debian_linuxMatch8.0

[
  {
    "product": "BIND 9",
    "vendor": "ISC",
    "versions": [
      {
        "status": "affected",
        "version": "9.9.9-P6, 9.9.10b1->9.9.10rc1, 9.10.4-P6, 9.10.5b1->9.10.5rc1, 9.11.0-P3, 9.11.1b1->9.11.1rc1, and 9.9.9-S8"
      }
    ]
  }
]

Source	Link
access	www.access.redhat.com/errata/RHSA-2017:1583
securitytracker	www.securitytracker.com/id/1038258
debian	www.debian.org/security/2017/dsa-3854
security	www.security.gentoo.org/glsa/201708-01
security	www.security.netapp.com/advisory/ntap-20180802-0002/
access	www.access.redhat.com/errata/RHSA-2017:1095
access	www.access.redhat.com/errata/RHSA-2017:1582
securityfocus	www.securityfocus.com/bid/97651
access	www.access.redhat.com/errata/RHSA-2017:1105
kb	www.kb.isc.org/docs/aa-01466

21 Nov 2024 03:24Current

7.1High risk

Vulners AI Score7.1

CVSS 25

CVSS 37.5

EPSS0.28496

CWE-617