CVE-2016-1284

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2016-1284

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-1284.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2016-1284

Published

2016-02-04T11:59:01Z

Modified

2025-04-12T13:12:27.575968Z

Severity

5.9 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

rdataset.c in ISC BIND 9 Supported Preview Edition 9.9.8-S before 9.9.8-S5, when nxdomain-redirect is enabled, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via crafted flag values in a query.

References

Affected packages

Git / github.com/isc-projects/bind9

Affected ranges

Type: GIT
Repo: https://github.com/isc-projects/bind9
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

8f4dc43fe932252669a55d1c7adda6b8d448962c

Last affected

c6638fb2591d18b05088be5469a217caa6e3dca5

Last affected

deea0d7033849202a9ec7fdab262908713cbdde2

Last affected

eca0e613ded09761d915390d9c3650e462710b8f

Affected versions

v9.*

v9.5.0a1

v9.5.0a2

v9.5.0a3

v9.5.0a4

v9.5.0a5

v9.5.0a6

v9.7.0a1

v9.9.0

v9.9.0rc3

v9.9.0rc4

v9.9.1

v9.9.2b1

v9.9.2rc1

v9.9.3

v9.9.3b1

v9.9.3b2

v9.9.3rc1

v9.9.3rc2

v9.9.4

v9.9.4b1

v9.9.4rc1

v9.9.4rc2

v9.9.5

v9.9.5b1

v9.9.5rc1

v9.9.5rc2

v9.9.6

v9.9.6b1

v9.9.6b2

v9.9.6rc1

v9.9.6rc2

v9.9.7

v9.9.7b1

v9.9.7rc1

v9.9.7rc2

v9.9.8b1