Lucene search
IscCVELIST:CVE-2018-5735HistoryFeb 16, 2018 - 12:00 a.m.
CVE-2018-5735 Backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858
2018-02-1600:00:00
isc
www.cve.org
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.2 High
AI Score
Confidence
High
0.191 Low
EPSS
Percentile
96.3%
The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858; Affects Debian versions 9.9.5.dfsg-9+deb8u15; 9.9.5.dfsg-9+deb8u18; 9.10.3.dfsg.P4-12.3+deb9u5; 9.11.5.P4+dfsg-5.1 No ISC releases are affected. Other packages from other distributions who did similar backports for the fix for 2017-3137 may also be affected.
CNA Affected
[
{
"product": "BIND9",
"vendor": "Debian",
"versions": [
{
"status": "affected",
"version": "Debian BIND9 9.9.5.dfsg-9+deb8u15; 9.9.5.dfsg-9+deb8u18; 9.10.3.dfsg.P4-12.3+deb9u5; 9.11.5.P4+dfsg-5.1"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2018-5735
2018-02-16 00:00:00
CVE-2017-3137
2017-04-12 00:00:00
f5
f5
K43084130 : BIND vulnerability CVE-2018-5735
2018-03-06 00:00:00
K30164784 : BIND vulnerability CVE-2017-3137
2017-04-26 00:00:00
nvd
nvd
CVE-2018-5735
2019-10-30 14:15:11
CVE-2017-3137
2019-01-16 20:29:00
cve
cve
CVE-2018-5735
2019-10-30 14:15:11
CVE-2017-3137
2019-01-16 20:29:00
prion
prion
Authentication flaw
2019-10-30 14:15:00
Code injection
2019-01-16 20:29:00
attackerkb
attackerkb
debiancve
debiancve
CVE-2018-5735
2019-10-30 14:15:11
CVE-2017-3137
2019-01-16 20:29:00
redhatcve
redhatcve
CVE-2018-5735
2020-04-08 05:00:16
CVE-2017-3137
2019-10-16 00:31:57
openvas
openvas
Ubuntu: Security Advisory (USN-3574-1)
2022-08-26 00:00:00
ISC BIND DoS Vulnerability (CVE-2017-3137) - Linux
2021-09-06 00:00:00
ISC BIND DoS Vulnerability (CVE-2017-3137) - Windows
2021-09-06 00:00:00
osv
osv
bind9 - security update
2018-02-16 00:00:00
CVE-2017-3137
2019-01-16 20:29:00
bind9 - security update
2017-05-28 00:00:00
ubuntu
ubuntu
Bind vulnerability
2018-02-19 00:00:00
Bind vulnerabilities
2017-04-17 00:00:00
checkpoint_advisories
checkpoint_advisories
suse
suse
Security update for bind (important)
2017-04-18 06:09:37
Security update for bind (important)
2017-04-13 06:10:58
Security update for bind (important)
2017-04-19 21:09:13
veracode
veracode
Denial Of Service (DoS)
2019-01-17 05:20:33
nessus
nessus
SUSE SLES11 Security Update : bind (SUSE-SU-2017:1027-1)
2017-04-18 00:00:00
Debian DLA-1285-1 : bind9 security update
2018-02-20 00:00:00
Scientific Linux Security Update : bind on SL7.x x86_64 (20170419)
2017-04-20 00:00:00
alpinelinux
alpinelinux
CVE-2017-3137
2019-01-16 20:29:00
cvelist
cvelist
debian
debian
[SECURITY] [DLA 1285-1] bind9 security update
2018-02-16 21:33:36
[SECURITY] [DSA 3854-1] bind9 security update
2017-05-14 17:47:46
[SECURITY] [DSA 3854-1] bind9 security update
2017-05-14 17:47:46
centos
centos
bind security update
2017-04-20 22:44:08
bind security update
2017-04-19 16:57:53
avleonov
avleonov
Adding third party nasl plugins to OpenVAS
2017-06-30 16:46:24
oraclelinux
oraclelinux
bind security update
2017-04-20 00:00:00
bind security update
2017-04-19 00:00:00
redhat
redhat
(RHSA-2017:1105) Important: bind security update
2017-04-20 08:30:27
(RHSA-2017:1095) Important: bind security update
2017-04-19 04:10:01
(RHSA-2017:1582) Important: bind security and bug fix update
2017-06-28 07:45:28
amazon
amazon
Important: bind
2017-04-27 00:07:00
fedora
fedora
[SECURITY] Fedora 25 Update: bind99-9.9.9-4.P8.fc25
2017-04-19 09:32:40
[SECURITY] Fedora 24 Update: bind99-9.9.9-4.P8.fc24
2017-05-06 23:52:20
[SECURITY] Fedora 26 Update: bind-9.11.0-7.P5.fc26
2017-04-19 17:03:48
altlinux
altlinux
Security fix for the ALT Linux 9 package bind version 9.10.4.P8-alt1
2017-04-12 00:00:00
Security fix for the ALT Linux 8 package bind version 9.10.4.P8-alt1
2017-04-12 00:00:00
archlinux
archlinux
[ASA-201704-11] bind: denial of service
2017-04-29 00:00:00
ibm
ibm
cloudfoundry
cloudfoundry
USN-3259-1: Bind vulnerabilities | Cloud Foundry
2017-05-01 00:00:00
cisa
cisa
ISC Releases Security Updates for BIND
2017-04-12 00:00:00
freebsd
freebsd
BIND -- multiple vulnerabilities
2017-04-12 00:00:00
slackware
slackware
[slackware-security] bind
2017-04-13 21:28:31
gentoo
gentoo
BIND: Multiple vulnerabilities
2017-08-17 00:00:00
mageia
mageia
Updated bind packages fix security vulnerability
2017-12-31 15:00:06
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.2 High
AI Score
Confidence
High
0.191 Low
EPSS
Percentile
96.3%
Related for CVELIST:CVE-2018-5735