CVE-2016-6170

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2016-6170
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-6170.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2016-6170
Downstream
Related
Published
2016-07-06T14:59:05Z
Modified
2025-10-14T14:33:14Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x through 9.11.0b1 allows primary DNS servers to cause a denial of service (secondary DNS server crash) via a large AXFR response, and possibly allows IXFR servers to cause a denial of service (IXFR client crash) via a large IXFR response and allows remote authenticated users to cause a denial of service (primary DNS server crash) via a large UPDATE message.

References

Affected packages

Git / gitlab.isc.org/isc-projects/bind9

Affected ranges

Type
GIT
Repo
https://gitlab.isc.org/isc-projects/bind9
Events
Last affected
111ec860a840d09dbd0551044e5fdc37d546c6b6
Introduced
63fbb3ea39094353765c04a6066b9e1d1013992a
Last affected
2799933bc6790356d4b3eebdfe21dc0f87977f14
Introduced
19d6c56085e97cf4ac559cdc27edd624127bcb32
Last affected
2d6d4babba5b5d2237bd37c0e4c3c993b7efd255
Last affected
632f9848811641da54fbb78c38e91a263b03d85a
Last affected
9833cd85a811d3a4313948f324d3906937633e65
Last affected
a23f742c3d767f41bfb1a143b0605a766936c4d9
Last affected
a5e4938f2d3c9d89b3fda65bc2fe6755ecfeea72
Last affected
b7843f9794be456c53d7dc0b51ead89f2c5d3351
Last affected
dca6957b62013f523e54084c92152f571d08f6c0