CVE-2016-2776

描述

buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query.

受影響套件(2)

• Alpine/bindfrom 0, < 9.10.4_p3
• Debian/bind9from 0, < 1:9.10.3.dfsg.P4-11

CVSS 分數

參考連結(2)

• ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2016-2776
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2016-2776