QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2016-1285

Back to search

CVE-2016-1285

Published: Mar 9, 2016

Modified: Aug 5, 2024

PUBLISHED

Description

named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 does not properly handle DNAME records when parsing fetch reply messages, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed packet to the rndc (aka control channel) interface, related to alist.c and sexpr.c.

VendorProductVersions

n/a

n/a

affected
n/a

References

FEDORA-2016-5047abe4a9
vendor-advisory
x_refsource_FEDORA
DSA-3511
vendor-advisory
x_refsource_DEBIAN
SUSE-SU-2016:0780
vendor-advisory
x_refsource_SUSE
FreeBSD-SA-16:13
vendor-advisory
x_refsource_FREEBSD
USN-2925-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2016:0562
vendor-advisory
x_refsource_REDHAT
openSUSE-SU-2016:0830
vendor-advisory
x_refsource_SUSE
GLSA-201610-07
vendor-advisory
x_refsource_GENTOO
1035236
vdb-entry
x_refsource_SECTRACK
SUSE-SU-2016:1541
vendor-advisory
x_refsource_SUSE
FEDORA-2016-364c0a9df4
vendor-advisory
x_refsource_FEDORA
openSUSE-SU-2016:0834
vendor-advisory
x_refsource_SUSE
HPSBUX03583
vendor-advisory
x_refsource_HP
SUSE-SU-2016:0759
vendor-advisory
x_refsource_SUSE
FEDORA-2016-dce6dbe6a8
vendor-advisory
x_refsource_FEDORA
FEDORA-2016-b593e84223
vendor-advisory
x_refsource_FEDORA
SUSE-SU-2016:0825
vendor-advisory
x_refsource_SUSE
RHSA-2016:0601
vendor-advisory
x_refsource_REDHAT
SSRT110084
vendor-advisory
x_refsource_HP
openSUSE-SU-2016:0859
vendor-advisory
x_refsource_SUSE
FEDORA-2016-161b73fc2c
vendor-advisory
x_refsource_FEDORA
openSUSE-SU-2016:0827
vendor-advisory
x_refsource_SUSE
FEDORA-2016-75f31fbb0a
vendor-advisory
x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now