bind: malformed signature records for DNAME records can trigger assertion failure

🗓️ 16 Mar 2016 12:53:36Reported by RedHatType

redhat

redhat🔗 access.redhat.com

BIND denial of service flaw: malformed DNAME signature records can cause named to crash via crafted query.

Reporter	Title	Published	Views	Family All 159
IBM Security Bulletins	Security Bulletin: Vulnerabilities in ISC Bind affect PowerKVM (CVE-2016-1285, CVE-2016-1286)	18 Jun 201801:30	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in bind affect Power Hardware Management Console (CVE-2016-1285, CVE-2016-1286)	23 Sep 202101:31	–	ibm
IBM Security Bulletins	Security Bulletin: IBM i is affected by networking BIND vulnerabilities	18 Dec 201914:26	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in ISC BIND and Samba - including Badlock - affect IBM Netezza Host Management	18 Oct 201903:10	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in ISC Bind affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance (CVE-2016-1286, CVE-2016-2088, CVE-2016-1285)	17 Jun 201822:33	–	ibm
Tenable Nessus	ISC BIND 9.x < 9.9.8-P4 / 9.9.8-S6 / 9.9.9-S3 / 9.10.3-P4 Multiple DoS	20 Jan 201700:00	–	nessus
Tenable Nessus	AIX bind Advisory : bind_advisory12.asc (IV84456) (IV84457) (IV84458) (IV84459) (IV84947) (IV84984) (IV85296) (IV85297) (IV85298)	3 Aug 201700:00	–	nessus
Tenable Nessus	AIX 6.1 TL 9 : bind (IV84456) (deprecated)	20 Jun 201600:00	–	nessus
Tenable Nessus	AIX 7.1 TL 3 : bind (IV84457) (deprecated)	20 Jun 201600:00	–	nessus
Tenable Nessus	AIX 7.1 TL 4 : bind (IV84458) (deprecated)	20 Jun 201600:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	5	i386	bind97	32:9.7.0-21.P2.el5_11.6	bind97-32:9.7.0-21.P2.el5_11.6.i386.rpm
Red Hat Enterprise Linux	5	ia64	bind97	32:9.7.0-21.P2.el5_11.6	bind97-32:9.7.0-21.P2.el5_11.6.ia64.rpm
Red Hat Enterprise Linux	5	ppc	bind97	32:9.7.0-21.P2.el5_11.6	bind97-32:9.7.0-21.P2.el5_11.6.ppc.rpm
Red Hat Enterprise Linux	5	s390x	bind97	32:9.7.0-21.P2.el5_11.6	bind97-32:9.7.0-21.P2.el5_11.6.s390x.rpm
Red Hat Enterprise Linux	5	x86_64	bind97	32:9.7.0-21.P2.el5_11.6	bind97-32:9.7.0-21.P2.el5_11.6.x86_64.rpm
Red Hat Enterprise Linux	5	i386	bind97-chroot	32:9.7.0-21.P2.el5_11.6	bind97-chroot-32:9.7.0-21.P2.el5_11.6.i386.rpm
Red Hat Enterprise Linux	5	ia64	bind97-chroot	32:9.7.0-21.P2.el5_11.6	bind97-chroot-32:9.7.0-21.P2.el5_11.6.ia64.rpm
Red Hat Enterprise Linux	5	ppc	bind97-chroot	32:9.7.0-21.P2.el5_11.6	bind97-chroot-32:9.7.0-21.P2.el5_11.6.ppc.rpm
Red Hat Enterprise Linux	5	s390x	bind97-chroot	32:9.7.0-21.P2.el5_11.6	bind97-chroot-32:9.7.0-21.P2.el5_11.6.s390x.rpm
Red Hat Enterprise Linux	5	x86_64	bind97-chroot	32:9.7.0-21.P2.el5_11.6	bind97-chroot-32:9.7.0-21.P2.el5_11.6.x86_64.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2016-1286
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
kb	www.kb.isc.org/article/AA-01353
nvd	www.nvd.nist.gov/vuln/detail/CVE-2016-1286
cve	www.cve.org/CVERecord

21 Nov 2025 17:55Current

6.8Medium risk

Vulners AI Score6.8

CVSS 25

CVSS 3.18.6

EPSS0.53591

bind flaw dname records signature records denial of service remote attacker