Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2017-3135

Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an inconsistent state leading to either an INSIST assertion failure or an attempt to read through a NULL pointer. Affects BIND 9.8.8, 9.9.3-S1 -> 9.9.9-S7, 9.9.3 -> 9.9.9-P5, 9.9.10b1, 9.10.0 -> 9.10.4-P5, 9.10.5b1, 9.11.0 -> 9.11.0-P2, 9.11.1b1.

Related bugs and status

CVE-2017-3135 (Candidate) is related to these bugs:

Bug #1669193: feature request - json stats output

Summary				In	Importance	Status
	1669193	feature request - json stats output		bind9 (Ubuntu)	Wishlist	Fix Released
	1669193	feature request - json stats output		bind9 (Debian)	Unknown	Fix Released

Bug #1701687: Please merge 1:9.10.3.dfsg.P4-10.1ubuntu7 -> 1:9.10.3.dfsg.P4-12.5

Summary				In	Importance	Status
	1701687	Please merge 1:9.10.3.dfsg.P4-10.1ubuntu7 -> 1:9.10.3.dfsg.P4-12.5		bind9 (Ubuntu)	Low	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://kb.isc.org/doc...
CONFIRM: https://h20566.www2.hp...
CONFIRM: https://security.netap...
DEBIAN: DSA-3795
GENTOO: GLSA-201708-01
REDHAT: RHSA-2017:0276
BID: 96150
SECTRACK: 1037801