{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T18:41:07.826","vulnerabilities":[{"cve":{"id":"CVE-2017-3135","sourceIdentifier":"security-officer@isc.org","published":"2019-01-16T20:29:00.283","lastModified":"2024-11-21T03:24:54.283","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an inconsistent state leading to either an INSIST assertion failure or an attempt to read through a NULL pointer. Affects BIND 9.8.8, 9.9.3-S1 -> 9.9.9-S7, 9.9.3 -> 9.9.9-P5, 9.9.10b1, 9.10.0 -> 9.10.4-P5, 9.10.5b1, 9.11.0 -> 9.11.0-P2, 9.11.1b1."},{"lang":"es","value":"En ciertas condiciones, al emplear DNS64 y RPZ para rescribir respuestas a consultas, el procesamiento de consultas puede continuar de forma inconsistente, lo que puede conducir a un fallo de aserción de INSIST o a un intento para leer a través de un puntero NULL. Afecta a BIND en su versión 9.8.8, desde la versión 9.9.3-S1 hasta la 9.9.9-S7, desde la versión 9.9.3 hasta la 9.9.9-P5, la versión 9.9.10b1, desde la versión 9.10.0 hasta la 9.10.4-P5, la versión 9.10.5b1, desde la versión 9.11.0 hasta la 9.11.0-P2 y a la versión 9.11.1b1."}],"metrics":{"cvssMetricV30":[{"source":"security-officer@isc.org","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:N/A:P","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-476"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.9.3:*:*:*:*:*:*:*","matchCriteriaId":"2A7BE793-7717-4019-8F50-158C309E48B2"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.9.3:s1:*:*:*:*:*:*","matchCriteriaId":"FCC182A9-5989-4A87-A3BA-F1CFAEDC95E2"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.9.8:*:*:*:*:*:*:*","matchCriteriaId":"3AF19353-E509-4864-ADDD-39F3012A262B"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.9.9:p5:*:*:*:*:*:*","matchCriteriaId":"012A3C08-2A0F-4168-9DE0-F609707E4C2E"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.9.9:s7:*:*:*:*:*:*","matchCriteriaId":"7132A53F-7DF2-4B79-AC86-75A0C73843B4"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.9.10:beta1:*:*:*:*:*:*","matchCriteriaId":"9C8F0163-FF32-44E0-B05C-F89263CD56A7"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.10.0:*:*:*:*:*:*:*","matchCriteriaId":"92ECA27E-4248-49BD-A84C-4854CCA19AC5"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.10.4:p1:*:*:*:*:*:*","matchCriteriaId":"BB2D2132-62E8-4E73-A0BF-4790DAFC5558"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.10.4:p2:*:*:*:*:*:*","matchCriteriaId":"E253BD9F-25B8-42E7-BEAB-E843381ED155"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.10.4:p3:*:*:*:*:*:*","matchCriteriaId":"6B5E42E5-27C6-4D6F-B7DC-903B10BF2017"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.10.4:p4:*:*:*:*:*:*","matchCriteriaId":"7E211374-A4F5-41D4-A89E-E6522E9D0DFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.10.4:p5:*:*:*:*:*:*","matchCriteriaId":"21CC7BA7-6D75-4561-ACF3-F1F61A0CBA62"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.10.5:beta1:*:*:*:*:*:*","matchCriteriaId":"278142AB-9CE9-4DAC-A0C5-A3E05A715829"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.11.0:*:*:*:*:*:*:*","matchCriteriaId":"3160C5ED-75EA-47B2-998E-EDFC46B37DDA"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.11.0:p1:*:*:*:*:*:*","matchCriteriaId":"086C327B-DF9F-4D4E-A538-1E29FEDC34C5"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.11.0:p2:*:*:*:*:*:*","matchCriteriaId":"1440B408-76B6-4FA7-899D-E28049A37704"},{"vulnerable":true,"criteria":"cpe:2.3:a:isc:bind:9.11.1:beta1:*:*:*:*:*:*","matchCriteriaId":"CE6ED392-74B9-487E-83B0-ECAAEEAB3AB3"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*","matchCriteriaId":"33C068A4-3780-4EAB-A937-6082DF847564"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*","matchCriteriaId":"51EF4996-72F4-4FA4-814F-F5991E7A8318"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"98381E61-F082-4302-B51F-5648884F998B"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*","matchCriteriaId":"D99A687E-EAE6-417E-A88E-D0082BC194CD"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"B353CE99-D57C-465B-AAB0-73EF581127D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"A8442C20-41F9-47FD-9A12-E724D3A31FD7"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*","matchCriteriaId":"9EC0D196-F7B8-4BDD-9050-779F7A7FBEE4"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*","matchCriteriaId":"A4E9DD8A-A68B-4A69-8B01-BFF92A2020A8"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"BF77CDCF-B9C9-427D-B2BF-36650FB2148C"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*","matchCriteriaId":"24C0F4E1-C52C-41E0-9F14-F83ADD5CC7ED"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"B76AA310-FEC7-497F-AF04-C3EC1E76C4CC"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*","matchCriteriaId":"825ECE2D-E232-46E0-A047-074B34DB1E97"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:data_ontap_edge:-:*:*:*:*:*:*:*","matchCriteriaId":"E0C4B1E5-75BF-43AE-BBAC-0DD4124C71ED"},{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:element_software_management_node:-:*:*:*:*:*:*:*","matchCriteriaId":"E902EEC6-9A41-4FBC-8D81-891DF846A5CB"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"},{"vulnerable":true,"criteria":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","matchCriteriaId":"DEECE5FC-CACF-4496-A3E7-164736409252"}]}]}],"references":[{"url":"http://rhn.redhat.com/errata/RHSA-2017-0276.html","source":"security-officer@isc.org","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/96150","source":"security-officer@isc.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1037801","source":"security-officer@isc.org","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03747en_us","source":"security-officer@isc.org","tags":["Third Party Advisory"]},{"url":"https://kb.isc.org/docs/aa-01453","source":"security-officer@isc.org","tags":["Vendor Advisory"]},{"url":"https://security.gentoo.org/glsa/201708-01","source":"security-officer@isc.org","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20180926-0005/","source":"security-officer@isc.org","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2017/dsa-3795","source":"security-officer@isc.org","tags":["Third Party Advisory"]},{"url":"http://rhn.redhat.com/errata/RHSA-2017-0276.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/96150","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"http://www.securitytracker.com/id/1037801","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03747en_us","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://kb.isc.org/docs/aa-01453","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://security.gentoo.org/glsa/201708-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20180926-0005/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://www.debian.org/security/2017/dsa-3795","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}