csaf_certbund - wid-sec-w-2025-1192

WID-SEC-W-2025-1192

Vulnerability from csaf_certbund - Published: 2018-01-16 23:00 - Updated: 2025-05-29 22:00

Summary

Internet Systems Consortium BIND9: Schwachstelle ermöglicht Denial of Service

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

BIND (Berkeley Internet Name Domain) ist ein Open-Source-Softwarepaket, das einen Domain-Name-System-Server implementiert. Debian ist eine Linux-Distribution, die ausschließlich Freie Software enthält.

Angriff

Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Internet Systems Consortium BIND9 ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme

- Linux - UNIX

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "BIND (Berkeley Internet Name Domain) ist ein Open-Source-Softwarepaket, das einen Domain-Name-System-Server implementiert.\r\nDebian ist eine Linux-Distribution, die ausschlie\u00dflich Freie Software enth\u00e4lt.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Internet Systems Consortium BIND9 ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- UNIX",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-1192 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2018/wid-sec-w-2025-1192.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-1192 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1192"
      },
      {
        "category": "external",
        "summary": "ISC Security Advisories #AA-01542 vom 2018-01-16",
        "url": "https://kb.isc.org/article/AA-01542"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory #DSA-4089-1 vom 2018-01-16",
        "url": "https://www.debian.org/security/2018/dsa-4089"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-3535-1 vom 2018-01-17",
        "url": "http://www.ubuntu.com/usn/usn-3535-1/"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-3535-1 vom 2018-01-17",
        "url": "http://www.ubuntu.com/usn/usn-3535-2/"
      },
      {
        "category": "external",
        "summary": "NetApp Security Advisory NTAP-20180117-0003 vom 2018-01-18",
        "url": "https://security.netapp.com/advisory/ntap-20180117-0003/"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2018-0102 vom 2018-01-22",
        "url": "http://linux.oracle.com/errata/ELSA-2018-0102.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2018-0101 vom 2018-01-22",
        "url": "http://linux.oracle.com/errata/ELSA-2018-0101.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2018:0101 vom 2018-01-23",
        "url": "https://access.redhat.com/errata/RHSA-2018:0101"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2018:0102 vom 2018-01-23",
        "url": "https://access.redhat.com/errata/RHSA-2018:0102"
      },
      {
        "category": "external",
        "summary": "F5 Security Advisory K08613310 vom 2018-01-23",
        "url": "https://support.f5.com/csp/article/K08613310"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2018:0303-1 vom 2018-01-31",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180303-1/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2018:0362-1 vom 2018-02-05",
        "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180362-1.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2018:0488 vom 2018-03-12",
        "url": "https://access.redhat.com/errata/RHSA-2018:0488"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2018:0487 vom 2018-03-12",
        "url": "https://access.redhat.com/errata/RHSA-2018:0487"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2022-9117 vom 2022-02-03",
        "url": "https://linux.oracle.com/errata/ELSA-2022-9117.html"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2025-213 vom 2025-05-30",
        "url": "https://www.dell.com/support/kbdoc/de-de/000326299/dsa-2025-213-security-update-for-dell-avamar-dell-networker-virtual-edition-nve-and-dell-powerprotect-dp-series-appliance-dell-integrated-data-protection-appliance-idpa-multiple-third-party-vulnerabilities"
      }
    ],
    "source_lang": "en-US",
    "title": "Internet Systems Consortium BIND9: Schwachstelle erm\u00f6glicht Denial of Service",
    "tracking": {
      "current_release_date": "2025-05-29T22:00:00.000+00:00",
      "generator": {
        "date": "2025-05-30T10:55:08.744+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2025-1192",
      "initial_release_date": "2018-01-16T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2018-01-16T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initial Release"
        },
        {
          "date": "2018-01-16T23:00:00.000+00:00",
          "number": "2",
          "summary": "Version nicht vorhanden"
        },
        {
          "date": "2018-01-17T23:00:00.000+00:00",
          "number": "3",
          "summary": "New remediations available"
        },
        {
          "date": "2018-01-21T23:00:00.000+00:00",
          "number": "4",
          "summary": "Added references"
        },
        {
          "date": "2018-01-22T23:00:00.000+00:00",
          "number": "5",
          "summary": "New remediations available"
        },
        {
          "date": "2018-01-23T23:00:00.000+00:00",
          "number": "6",
          "summary": "New remediations available"
        },
        {
          "date": "2018-01-31T23:00:00.000+00:00",
          "number": "7",
          "summary": "New remediations available"
        },
        {
          "date": "2018-02-05T23:00:00.000+00:00",
          "number": "8",
          "summary": "New remediations available"
        },
        {
          "date": "2018-03-12T23:00:00.000+00:00",
          "number": "9",
          "summary": "New remediations available"
        },
        {
          "date": "2018-03-12T23:00:00.000+00:00",
          "number": "10",
          "summary": "Version nicht vorhanden"
        },
        {
          "date": "2022-02-03T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2025-05-29T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Dell aufgenommen"
        }
      ],
      "status": "final",
      "version": "12"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Dell Avamar",
            "product": {
              "name": "Dell Avamar",
              "product_id": "T039664",
              "product_identification_helper": {
                "cpe": "cpe:/a:dell:avamar:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Dell NetWorker",
            "product": {
              "name": "Dell NetWorker",
              "product_id": "T034583",
              "product_identification_helper": {
                "cpe": "cpe:/a:dell:networker:virtual"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "13.1.0",
                "product": {
                  "name": "F5 BIG-IP 13.1.0",
                  "product_id": "T011463",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:f5:big-ip:13.1.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "12.1.3",
                "product": {
                  "name": "F5 BIG-IP 12.1.3",
                  "product_id": "T011890",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:f5:big-ip:12.1.3.2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "11.6.2-11.6.3",
                "product": {
                  "name": "F5 BIG-IP 11.6.2-11.6.3",
                  "product_id": "T011963",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:f5:big-ip:11.6.2_-_11.6.3"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "BIG-IP"
          }
        ],
        "category": "vendor",
        "name": "F5"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "9.0.0-9.8.x",
                "product": {
                  "name": "Internet Systems Consortium BIND 9.0.0-9.8.x",
                  "product_id": "T011633",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:isc:bind:9.0.0_-_9.8.x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.9.0-9.9.11",
                "product": {
                  "name": "Internet Systems Consortium BIND 9.9.0-9.9.11",
                  "product_id": "T011634",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:isc:bind:9.9.0_-_9.9.11"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.10.0-9.10.6",
                "product": {
                  "name": "Internet Systems Consortium BIND 9.10.0-9.10.6",
                  "product_id": "T011635",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:isc:bind:9.10.0_-_9.10.6"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.11.0-9.11.2",
                "product": {
                  "name": "Internet Systems Consortium BIND 9.11.0-9.11.2",
                  "product_id": "T011636",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:isc:bind:9.11.0_-_9.11.2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.9.3-S1- 9.9.11-S1",
                "product": {
                  "name": "Internet Systems Consortium BIND 9.9.3-S1- 9.9.11-S1",
                  "product_id": "T011637",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:isc:bind:9.9.3-s1_-__9.9.11-s1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.10.5-S1-9.10.6-S1",
                "product": {
                  "name": "Internet Systems Consortium BIND 9.10.5-S1-9.10.6-S1",
                  "product_id": "T011638",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:isc:bind:9.10.5-s1_-_9.10.6-s1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.12.0a1-9.12.0rc1",
                "product": {
                  "name": "Internet Systems Consortium BIND 9.12.0a1-9.12.0rc1",
                  "product_id": "T011639",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:isc:bind:9.12.0a1_-_9.12.0rc1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "BIND"
          }
        ],
        "category": "vendor",
        "name": "Internet Systems Consortium"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-3145",
      "product_status": {
        "known_affected": [
          "T011636",
          "T011635",
          "T011638",
          "T011637",
          "67646",
          "T011634",
          "T011633",
          "T011963",
          "T011463",
          "T034583",
          "T004914",
          "T011890",
          "T039664",
          "2951",
          "T002207",
          "T000126",
          "T011639"
        ]
      },
      "release_date": "2018-01-16T23:00:00.000+00:00",
      "title": "CVE-2017-3145"
    }
  ]
}

CVE-2017-3145 (GCVE-0-2017-3145)

Vulnerability from cvelistv5 – Published: 2019-01-16 20:00 – Updated: 2024-09-17 00:10

Summary

BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free error that can trigger an assertion failure and crash in named. Affects BIND 9.0.0 to 9.8.x, 9.9.0 to 9.9.11, 9.10.0 to 9.10.6, 9.11.0 to 9.11.2, 9.9.3-S1 to 9.9.11-S1, 9.10.5-S1 to 9.10.6-S1, 9.12.0a1 to 9.12.0rc1.

Severity ?

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

While this bug has existed in BIND since 9.0.0, there are no known code paths leading to it in ISC releases prior to those containing the fix for CVE-2017-3137. Thus while all instances of BIND ought to be patched, only ISC versions [9.9.9-P8 to 9.9.11, 9.10.4-P8 to 9.10.6, 9.11.0-P5 to 9.11.2, 9.9.9-S10 to 9.9.11-S1, 9.10.5-S1 to 9.10.6-S1, and 9.12.0a1 to 9.12.0rc1] acting as DNSSEC validating resolvers are currently known to crash due to this bug. The known crash is an assertion failure in netaddr.c.

Assigner

isc

References

URL

Tags

	https://access.redhat.com/errata/RHSA-2018:0102	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2018:0487	vendor-advisoryx_refsource_REDHAT
	https://www.debian.org/security/2018/dsa-4089	vendor-advisoryx_refsource_DEBIAN
	https://access.redhat.com/errata/RHSA-2018:0488	vendor-advisoryx_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2018:0101	vendor-advisoryx_refsource_REDHAT
	http://www.securitytracker.com/id/1040195	vdb-entryx_refsource_SECTRACK
	https://kb.isc.org/docs/aa-01542	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/102716	vdb-entryx_refsource_BID
	https://lists.debian.org/debian-lts-announce/2018…	mailing-listx_refsource_MLIST
	https://security.netapp.com/advisory/ntap-2018011…	x_refsource_CONFIRM
	https://supportportal.juniper.net/s/article/2018-…	vendor-advisoryx_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	ISC	BIND 9	Affected: 9.0.0 to 9.8.x, 9.9.0 to 9.9.11, 9.10.0 to 9.10.6, 9.11.0 to 9.11.2, 9.9.3-S1 to 9.9.11-S1, 9.10.5-S1 to 9.10.6-S1, 9.12.0a1 to 9.12.0rc1

Credits

ISC would like to thank Jayachandran Palanisamy of Cygate AB for making us aware of this vulnerability.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T14:16:28.228Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2018:0102",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:0102"
          },
          {
            "name": "RHSA-2018:0487",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:0487"
          },
          {
            "name": "DSA-4089",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2018/dsa-4089"
          },
          {
            "name": "RHSA-2018:0488",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:0488"
          },
          {
            "name": "RHSA-2018:0101",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2018:0101"
          },
          {
            "name": "1040195",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1040195"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kb.isc.org/docs/aa-01542"
          },
          {
            "name": "102716",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/102716"
          },
          {
            "name": "[debian-lts-announce] 20180121 [SECURITY] [DLA 1255-1] bind9 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00029.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20180117-0003/"
          },
          {
            "tags": [
              "vendor-advisory",
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://supportportal.juniper.net/s/article/2018-07-Security-Bulletin-SRX-Series-Vulnerabilities-in-ISC-BIND-named"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "BIND 9",
          "vendor": "ISC",
          "versions": [
            {
              "status": "affected",
              "version": "9.0.0 to 9.8.x, 9.9.0 to 9.9.11, 9.10.0 to 9.10.6, 9.11.0 to 9.11.2, 9.9.3-S1 to 9.9.11-S1, 9.10.5-S1 to 9.10.6-S1, 9.12.0a1 to 9.12.0rc1"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "ISC would like to thank Jayachandran Palanisamy of Cygate AB for making us aware of this vulnerability."
        }
      ],
      "datePublic": "2018-01-16T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free error that can trigger an assertion failure and crash in named. Affects BIND 9.0.0 to 9.8.x, 9.9.0 to 9.9.11, 9.10.0 to 9.10.6, 9.11.0 to 9.11.2, 9.9.3-S1 to 9.9.11-S1, 9.10.5-S1 to 9.10.6-S1, 9.12.0a1 to 9.12.0rc1."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "While this bug has existed in BIND since 9.0.0, there are no known code paths leading to it in ISC releases prior to those containing the fix for CVE-2017-3137.  Thus while all instances of BIND ought to be patched, only ISC versions [9.9.9-P8 to 9.9.11, 9.10.4-P8 to 9.10.6, 9.11.0-P5 to 9.11.2, 9.9.9-S10 to 9.9.11-S1, 9.10.5-S1 to 9.10.6-S1, and 9.12.0a1 to 9.12.0rc1] acting as DNSSEC validating resolvers are currently known to crash due to this bug.  The known crash is an assertion failure in netaddr.c.",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-06-16T16:28:34.033Z",
        "orgId": "404fd4d2-a609-4245-b543-2c944a302a22",
        "shortName": "isc"
      },
      "references": [
        {
          "name": "RHSA-2018:0102",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:0102"
        },
        {
          "name": "RHSA-2018:0487",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:0487"
        },
        {
          "name": "DSA-4089",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2018/dsa-4089"
        },
        {
          "name": "RHSA-2018:0488",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:0488"
        },
        {
          "name": "RHSA-2018:0101",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2018:0101"
        },
        {
          "name": "1040195",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1040195"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kb.isc.org/docs/aa-01542"
        },
        {
          "name": "102716",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/102716"
        },
        {
          "name": "[debian-lts-announce] 20180121 [SECURITY] [DLA 1255-1] bind9 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00029.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20180117-0003/"
        },
        {
          "tags": [
            "vendor-advisory",
            "x_refsource_CONFIRM"
          ],
          "url": "https://supportportal.juniper.net/s/article/2018-07-Security-Bulletin-SRX-Series-Vulnerabilities-in-ISC-BIND-named"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "Upgrade to the patched release most closely related to your current version of BIND.  These can all be downloaded from http://www.isc.org/downloads.\n\n    BIND 9 version 9.9.11-P1\n    BIND 9 version 9.10.6-P1\n    BIND 9 version 9.11.2-P1\n    BIND 9 version 9.12.0rc2\n\nBIND Supported Preview Edition is a special feature preview branch of BIND provided to eligible ISC support customers.\n\n    BIND 9 version 9.9.11-S2\n    BIND 9 version 9.10.6-S2"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Improper fetch cleanup sequencing in the resolver can cause named to crash",
      "workarounds": [
        {
          "lang": "en",
          "value": "If an operator is experiencing crashes due to this, temporarily disabling DNSSEC validation can be used to avoid the known problematic code path while replacement builds are prepared."
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security-officer@isc.org",
          "DATE_PUBLIC": "2018-01-16T00:00:00.000Z",
          "ID": "CVE-2017-3145",
          "STATE": "PUBLIC",
          "TITLE": "Improper fetch cleanup sequencing in the resolver can cause named to crash"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "BIND 9",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "9.0.0 to 9.8.x, 9.9.0 to 9.9.11, 9.10.0 to 9.10.6, 9.11.0 to 9.11.2, 9.9.3-S1 to 9.9.11-S1, 9.10.5-S1 to 9.10.6-S1, 9.12.0a1 to 9.12.0rc1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "ISC"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "ISC would like to thank Jayachandran Palanisamy of Cygate AB for making us aware of this vulnerability."
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free error that can trigger an assertion failure and crash in named. Affects BIND 9.0.0 to 9.8.x, 9.9.0 to 9.9.11, 9.10.0 to 9.10.6, 9.11.0 to 9.11.2, 9.9.3-S1 to 9.9.11-S1, 9.10.5-S1 to 9.10.6-S1, 9.12.0a1 to 9.12.0rc1."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "While this bug has existed in BIND since 9.0.0, there are no known code paths leading to it in ISC releases prior to those containing the fix for CVE-2017-3137.  Thus while all instances of BIND ought to be patched, only ISC versions [9.9.9-P8 to 9.9.11, 9.10.4-P8 to 9.10.6, 9.11.0-P5 to 9.11.2, 9.9.9-S10 to 9.9.11-S1, 9.10.5-S1 to 9.10.6-S1, and 9.12.0a1 to 9.12.0rc1] acting as DNSSEC validating resolvers are currently known to crash due to this bug.  The known crash is an assertion failure in netaddr.c."
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "RHSA-2018:0102",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:0102"
            },
            {
              "name": "RHSA-2018:0487",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:0487"
            },
            {
              "name": "DSA-4089",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2018/dsa-4089"
            },
            {
              "name": "RHSA-2018:0488",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:0488"
            },
            {
              "name": "RHSA-2018:0101",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2018:0101"
            },
            {
              "name": "1040195",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1040195"
            },
            {
              "name": "https://kb.isc.org/docs/aa-01542",
              "refsource": "CONFIRM",
              "url": "https://kb.isc.org/docs/aa-01542"
            },
            {
              "name": "102716",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/102716"
            },
            {
              "name": "[debian-lts-announce] 20180121 [SECURITY] [DLA 1255-1] bind9 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2018/01/msg00029.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20180117-0003/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20180117-0003/"
            },
            {
              "name": "https://supportportal.juniper.net/s/article/2018-07-Security-Bulletin-SRX-Series-Vulnerabilities-in-ISC-BIND-named",
              "refsource": "CONFIRM",
              "url": "https://supportportal.juniper.net/s/article/2018-07-Security-Bulletin-SRX-Series-Vulnerabilities-in-ISC-BIND-named"
            }
          ]
        },
        "solution": [
          {
            "lang": "en",
            "value": "Upgrade to the patched release most closely related to your current version of BIND.  These can all be downloaded from http://www.isc.org/downloads.\n\n    BIND 9 version 9.9.11-P1\n    BIND 9 version 9.10.6-P1\n    BIND 9 version 9.11.2-P1\n    BIND 9 version 9.12.0rc2\n\nBIND Supported Preview Edition is a special feature preview branch of BIND provided to eligible ISC support customers.\n\n    BIND 9 version 9.9.11-S2\n    BIND 9 version 9.10.6-S2"
          }
        ],
        "source": {
          "discovery": "UNKNOWN"
        },
        "work_around": [
          {
            "lang": "en",
            "value": "If an operator is experiencing crashes due to this, temporarily disabling DNSSEC validation can be used to avoid the known problematic code path while replacement builds are prepared."
          }
        ]
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "404fd4d2-a609-4245-b543-2c944a302a22",
    "assignerShortName": "isc",
    "cveId": "CVE-2017-3145",
    "datePublished": "2019-01-16T20:00:00Z",
    "dateReserved": "2016-12-02T00:00:00",
    "dateUpdated": "2024-09-17T00:10:46.349Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2025-1192

CVE-2017-3145 (GCVE-0-2017-3145)

Tags

Sightings

Nomenclature