CVE-2017-3138

Description

named contains a feature which allows operators to issue commands to a running server by communicating with the server process over a control channel, using a utility program such as rndc. A regression introduced in a recent feature change has created a situation under which some versions of named can be caused to exit with a REQUIRE assertion failure if they are sent a null command string. Affects BIND 9.9.9->9.9.9-P7, 9.9.10b1->9.9.10rc2, 9.10.4->9.10.4-P7, 9.10.5b1->9.10.5rc2, 9.11.0->9.11.0-P4, 9.11.1b1->9.11.1rc2, 9.9.9-S1->9.9.9-S9.

CVSS Metrics

• v3.0•MEDIUM•Score: 6.5CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
• v3.0•MEDIUM•Score: 5.3CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
• v2.0•LOW•Score: 3.5AV:N/AC:M/Au:S/C:N/I:N/A:P

EPSS Trends

Current EPSS score: 37.93%• Percentile: 97%

Techniques & Countermeasures

• CWE-617•Reachable Assertion

  The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

Affected Systems

• debian•debian_linux

  8.0

• isc•bind

  9.9.9 | 9.9.9:p1 | 9.9.9:p2 | 9.9.9:p3 | 9.9.9:p4 | 9.9.9:p5 | 9.9.9:p6 | 9.9.9:p7 | 9.9.9:s1 | 9.9.9:s7 | 9.9.10:beta1 | 9.9.10:rc1 | 9.9.10:rc2 | 9.10.4 | 9.10.4:p1 | 9.10.4:p2 | 9.10.4:p3 | 9.10.4:p4 | 9.10.4:p5 | 9.10.4:p6 | 9.10.4:p7 | 9.10.5:b1 | 9.10.5:rc1 | 9.10.5:rc2 | 9.11.0 | 9.11.0:p1 | 9.11.0:p2 | 9.11.0:p3 | 9.11.0:p4 | 9.11.1:b1 | 9.11.1:rc1 | 9.11.1:rc2

• isc•bind 9

  9.9.9->9.9.9-P7, 9.9.10b1->9.9.10rc2, 9.10.4->9.10.4-P7, 9.10.5b1->9.10.5rc2, 9.11.0->9.11.0-P4, 9.11.1b1->9.11.1rc2, 9.9.9-S1->9.9.9-S9

• netapp•data_ontap_edge

  na

• netapp•element_software

  na

• netapp•oncommand_balance

  na

References (6)

• http://www.securitytracker.com/id/1038260
• http://www.securityfocus.com/bid/97657
• https://security.gentoo.org/glsa/201708-01
• https://security.netapp.com/advisory/ntap-20180802-0002/
• https://www.debian.org/security/2017/dsa-3854
• https://kb.isc.org/docs/aa-01471