NULL pointer dereference in Isc Bind
CVE-2017-3135
Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an inconsistent state leading to either an INSIST assertion failure or an attempt to read through a NULL pointer. Affects BIND 9…
EPSS: 0.292 (97.9th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.
Affected products
- Isc Bind — versions 9.9.3, 9.9.8, 9.9.9
- Isc Bind 9 — versions BIND 9 9.8.8, 9.9.3-S1 -> 9.9.9-S7, 9.9.3 -> 9.9.9-P5, 9.9.10b1, 9.10.0 -> 9.10.4-P5, 9.10.5b1, 9.11.0 -> 9.11.0-P2, 9.11.1b1
- Netapp Data_ontap_edge
- Netapp Element_software_management_node
- Debian Debian_linux — versions 8.0, 9.0
- Redhat Enterprise_linux_desktop — versions 7.0
- Redhat Enterprise_linux_server — versions 7.0
- Redhat Enterprise_linux_server_aus — versions 7.3, 7.4, 7.6
- Redhat Enterprise_linux_server_eus — versions 7.3, 7.4, 7.5
- Redhat Enterprise_linux_server_tus — versions 7.3, 7.6
Weakness classification (CWE)
Public proof-of-concept exploits
References
- security-officer@isc.org (vendor-advisory, Third Party Advisory, x_refsource_GENTOO)
- security-officer@isc.org (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- security-officer@isc.org (x_refsource_CONFIRM, Third Party Advisory)
- security-officer@isc.org (x_refsource_CONFIRM, Third Party Advisory)
- security-officer@isc.org (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
- security-officer@isc.org (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_SECTRACK)
- security-officer@isc.org (vendor-advisory, Third Party Advisory, x_refsource_DEBIAN)
- security-officer@isc.org (x_refsource_CONFIRM, Vendor Advisory)
Frequently asked questions
- What is CVE-2017-3135?
- CVE-2017-3135 is a high-severity vulnerability in Isc Bind, classified under NULL Pointer Dereference. CVSS score: 7.5/10. Published 2019-01-16.
- How severe is CVE-2017-3135?
- High severity. CVSS v3 base score is 7.5 out of 10.
- Is CVE-2017-3135 known to be exploited?
- 11 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.