Lucene search

K
ubuntuUbuntuUSN-3201-1
HistoryFeb 16, 2017 - 12:00 a.m.

Bind vulnerabilities

2017-02-1600:00:00
ubuntu.com
38

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

6.2 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.096 Low

EPSS

Percentile

94.6%

Releases

  • Ubuntu 16.10
  • Ubuntu 16.04 ESM
  • Ubuntu 14.04 ESM
  • Ubuntu 12.04

Packages

  • bind9 - Internet Domain Name Server

Details

It was discovered that Bind incorrectly handled rewriting certain query
responses when using both DNS64 and RPZ. A remote attacker could possibly
use this issue to cause Bind to crash, resulting in a denial of service.

OSVersionArchitecturePackageVersionFilename
Ubuntu16.10noarchbind9< 1:9.10.3.dfsg.P4-10.1ubuntu1.3UNKNOWN
Ubuntu16.10noarchbind9-dbgsym< 1:9.10.3.dfsg.P4-10.1ubuntu1.3UNKNOWN
Ubuntu16.10noarchbind9-doc< 1:9.10.3.dfsg.P4-10.1ubuntu1.3UNKNOWN
Ubuntu16.10noarchbind9-host< 1:9.10.3.dfsg.P4-10.1ubuntu1.3UNKNOWN
Ubuntu16.10noarchbind9-host-dbgsym< 1:9.10.3.dfsg.P4-10.1ubuntu1.3UNKNOWN
Ubuntu16.10noarchbind9utils< 1:9.10.3.dfsg.P4-10.1ubuntu1.3UNKNOWN
Ubuntu16.10noarchbind9utils-dbgsym< 1:9.10.3.dfsg.P4-10.1ubuntu1.3UNKNOWN
Ubuntu16.10noarchdnsutils< 1:9.10.3.dfsg.P4-10.1ubuntu1.3UNKNOWN
Ubuntu16.10noarchdnsutils-dbgsym< 1:9.10.3.dfsg.P4-10.1ubuntu1.3UNKNOWN
Ubuntu16.10noarchhost< 1:9.10.3.dfsg.P4-10.1ubuntu1.3UNKNOWN
Rows per page:
1-10 of 1201

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

6.2 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.096 Low

EPSS

Percentile

94.6%