Description
named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted signature record for a DNAME record, related to db.c and resolver.c.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
Configuration 1 [-]
|
Configuration 2 [-]
|
Configuration 3 [-]
|
Configuration 4 [-]
|
Configuration 5 [-]
|
Configuration 6 [-]
| AND |
|
| Package | CPE | Advisory | Released Date |
|---|---|---|---|
| Red Hat Enterprise Linux 5 | |||
| bind97-32:9.7.0-21.P2.el5_11.6 | cpe:/o:redhat:enterprise_linux:5 | RHSA-2016:0458 | 2016-03-16T00:00:00Z |
| bind-30:9.3.6-25.P1.el5_11.8 | cpe:/o:redhat:enterprise_linux:5 | RHSA-2016:0459 | 2016-03-16T00:00:00Z |
| Red Hat Enterprise Linux 6 | |||
| bind-32:9.8.2-0.37.rc1.el6_7.7 | cpe:/o:redhat:enterprise_linux:6 | RHSA-2016:0459 | 2016-03-16T00:00:00Z |
| Red Hat Enterprise Linux 6.2 Advanced Update Support | |||
| bind-32:9.7.3-8.P3.el6_2.4 | cpe:/o:redhat:rhel_mission_critical:6.2 | RHSA-2016:0601 | 2016-04-06T00:00:00Z |
| Red Hat Enterprise Linux 6.4 Advanced Update Support | |||
| bind-32:9.8.2-0.17.rc1.el6_4.8 | cpe:/o:redhat:rhel_aus:6.4 | RHSA-2016:0562 | 2016-03-31T00:00:00Z |
| Red Hat Enterprise Linux 6.5 Advanced Update Support | |||
| bind-32:9.8.2-0.23.rc1.el6_5.3 | cpe:/o:redhat:rhel_aus:6.5 | RHSA-2016:0562 | 2016-03-31T00:00:00Z |
| Red Hat Enterprise Linux 6.6 Extended Update Support | |||
| bind-32:9.8.2-0.30.rc1.el6_6.5 | cpe:/o:redhat:rhel_eus:6.6 | RHSA-2016:0562 | 2016-03-31T00:00:00Z |
| Red Hat Enterprise Linux 7 | |||
| bind-32:9.9.4-29.el7_2.3 | cpe:/o:redhat:enterprise_linux:7 | RHSA-2016:0459 | 2016-03-16T00:00:00Z |
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 Debian DSA |
DSA-3511-1 | bind9 security update |
 Ubuntu USN |
USN-2925-1 | Bind vulnerabilities |
References
History
Fri, 11 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Subscriptions
Canonical
Subscribe
Ubuntu Linux
Subscribe
Debian
Subscribe
Debian Linux
Subscribe
Fedoraproject
Subscribe
Fedora
Subscribe
Isc
Subscribe
Bind
Subscribe
Juniper
Subscribe
Junos
Subscribe
Srx100
Subscribe
Srx110
Subscribe
Srx1400
Subscribe
Srx1500
Subscribe
Srx1600
Subscribe
Srx210
Subscribe
Srx220
Subscribe
Srx2300
Subscribe
Srx240
Subscribe
Srx240h2
Subscribe
Srx240m
Subscribe
Srx300
Subscribe
Srx320
Subscribe
Srx340
Subscribe
Srx3400
Subscribe
Srx345
Subscribe
Srx3600
Subscribe
Srx380
Subscribe
Srx4000
Subscribe
Srx4100
Subscribe
Srx4200
Subscribe
Srx4300
Subscribe
Srx4600
Subscribe
Srx4700
Subscribe
Srx5000
Subscribe
Srx5400
Subscribe
Srx550
Subscribe
Srx550 Hm
Subscribe
Srx550m
Subscribe
Srx5600
Subscribe
Srx5800
Subscribe
Srx650
Subscribe
Vsrx
Subscribe
Opensuse
Subscribe
Leap
Subscribe
Opensuse
Subscribe
Redhat
Subscribe
Enterprise Linux
Subscribe
Rhel Aus
Subscribe
Rhel Eus
Subscribe
Rhel Mission Critical
Subscribe
Suse
Subscribe
Linux Enterprise Debuginfo
Subscribe
Linux Enterprise Desktop
Subscribe
Linux Enterprise Server
Subscribe
Linux Enterprise Software Development Kit
Subscribe
Manager
Subscribe
Manager Proxy
Subscribe
Openstack Cloud
Subscribe
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-05T22:48:13.712Z
Reserved: 2016-01-04T00:00:00.000Z
Link: CVE-2016-1286
Vulnrichment
No data.
NVD
Status : Deferred
Published: 2016-03-09T23:59:03.147
Modified: 2025-04-12T10:46:40.837
Link: CVE-2016-1286
Redhat
OpenCVE Enrichment
No data.
Weaknesses