{"containers": {"cna": {"affected": [{"product": "BIND", "vendor": "Red Hat", "versions": [{"status": "affected", "version": "shipped in Red Hat Enterprise Linux 6"}]}], "datePublic": "2017-05-08T00:00:00", "descriptions": [{"lang": "en", "value": "A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response."}], "problemTypes": [{"descriptions": [{"description": "Other", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-04-09T17:07:24", "orgId": "404fd4d2-a609-4245-b543-2c944a302a22", "shortName": "isc"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://access.redhat.com/security/cve/cve-2017-3139"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1447743"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security-officer@isc.org", "ID": "CVE-2017-3139", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "BIND", "version": {"version_data": [{"version_value": "shipped in Red Hat Enterprise Linux 6"}]}}]}, "vendor_name": "Red Hat"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Other"}]}]}, "references": {"reference_data": [{"name": "https://access.redhat.com/security/cve/cve-2017-3139", "refsource": "CONFIRM", "url": "https://access.redhat.com/security/cve/cve-2017-3139"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1447743", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1447743"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T14:16:28.247Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://access.redhat.com/security/cve/cve-2017-3139"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1447743"}]}]}, "cveMetadata": {"assignerOrgId": "404fd4d2-a609-4245-b543-2c944a302a22", "assignerShortName": "isc", "cveId": "CVE-2017-3139", "datePublished": "2019-04-09T17:07:24", "dateReserved": "2016-12-02T00:00:00", "dateUpdated": "2024-08-05T14:16:28.247Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.2:*:*:*:*:*:*:*", "matchCriteriaId": "AD6D0378-F0F4-4AAA-80AF-8287C790EC96", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:*", "matchCriteriaId": "AF83BB87-B203-48F9-9D06-48A5FE399050", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*", "matchCriteriaId": "1F3BEFDB-5156-4E1C-80BB-8BE9FEAA7623", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*", "matchCriteriaId": "16E6D998-B41D-4B49-9E00-8336D2E40A4A", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7:*:*:*:*:*:*:*", "matchCriteriaId": "6C81647C-9A53-481D-A54C-36770A093F90", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:6.5:*:*:*:*:*:*:*", "matchCriteriaId": "835AE071-CEAE-49E5-8F0C-E5F50FB85EFC", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*", "matchCriteriaId": "13E02156-E748-4820-B76F-7074793837E1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response."}, {"lang": "es", "value": "Se encontr\u00f3 un fallo de denegaci\u00f3n de servicio en la forma en que BIND maneja la comprobaci\u00f3n de DNSSEC. Un atacante remoto podr\u00eda utilizar este fallo para hacer la salida nombrada inesperadamente con un error de aserci\u00f3n por medio de una respuesta DNS especialmente creada."}], "id": "CVE-2017-3139", "lastModified": "2021-05-14T20:35:36.347", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-04-09T18:29:00.343", "references": [{"source": "security-officer@isc.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/security/cve/cve-2017-3139"}, {"source": "security-officer@isc.org", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1447743"}], "sourceIdentifier": "security-officer@isc.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-617"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2017:1202", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "bind-32:9.8.2-0.62.rc1.el6_9.2", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2017-05-08T00:00:00Z"}, {"advisory": "RHSA-2017:1582", "cpe": "cpe:/o:redhat:rhel_mission_critical:6.2", "package": "bind-32:9.7.3-8.P3.el6_2.9", "product_name": "Red Hat Enterprise Linux 6.2 Advanced Update Support", "release_date": "2017-06-28T00:00:00Z"}, {"advisory": "RHSA-2017:1582", "cpe": "cpe:/o:redhat:rhel_aus:6.4", "package": "bind-32:9.8.2-0.17.rc1.el6_4.12", "product_name": "Red Hat Enterprise Linux 6.4 Advanced Update Support", "release_date": "2017-06-28T00:00:00Z"}, {"advisory": "RHSA-2017:1582", "cpe": "cpe:/o:redhat:rhel_aus:6.5", "package": "bind-32:9.8.2-0.23.rc1.el6_5.7", "product_name": "Red Hat Enterprise Linux 6.5 Advanced Update Support", "release_date": "2017-06-28T00:00:00Z"}, {"advisory": "RHSA-2017:1582", "cpe": "cpe:/o:redhat:rhel_tus:6.5", "package": "bind-32:9.8.2-0.23.rc1.el6_5.7", "product_name": "Red Hat Enterprise Linux 6.5 Telco Extended Update Support", "release_date": "2017-06-28T00:00:00Z"}, {"advisory": "RHSA-2017:1582", "cpe": "cpe:/o:redhat:rhel_aus:6.6", "package": "bind-32:9.8.2-0.30.rc1.el6_6.9", "product_name": "Red Hat Enterprise Linux 6.6 Advanced Update Support", "release_date": "2017-06-28T00:00:00Z"}, {"advisory": "RHSA-2017:1582", "cpe": "cpe:/o:redhat:rhel_tus:6.6", "package": "bind-32:9.8.2-0.30.rc1.el6_6.9", "product_name": "Red Hat Enterprise Linux 6.6 Telco Extended Update Support", "release_date": "2017-06-28T00:00:00Z"}, {"advisory": "RHSA-2017:1582", "cpe": "cpe:/o:redhat:rhel_eus:6.7", "package": "bind-32:9.8.2-0.37.rc1.el6_7.11", "product_name": "Red Hat Enterprise Linux 6.7 Extended Update Support", "release_date": "2017-06-28T00:00:00Z"}], "bugzilla": {"description": "bind: assertion failure in DNSSEC validation", "id": "1447743", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1447743"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.5", "cvss3_scoring_vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "status": "verified"}, "details": ["A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response.", "A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response."], "name": "CVE-2017-3139", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Will not fix", "package_name": "bind", "product_name": "Red Hat Enterprise Linux 5"}, {"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Will not fix", "package_name": "bind97", "product_name": "Red Hat Enterprise Linux 5"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "bind", "product_name": "Red Hat Enterprise Linux 7"}], "public_date": "2017-05-08T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2017-3139\nhttps://nvd.nist.gov/vuln/detail/CVE-2017-3139"], "statement": "This issue affected only the BIND versions as shipped with Red Hat Enterprise Linux 6. This issue did not affect any upstream versions of BIND. This issue does not affect BIND configurations which have DNSSEC validation turned off.", "threat_severity": "Important"}