CVE-2017-3135: denial-of-service vulnerability in ISC BIND 9

by CIRT Team

ISC announced CVE-2017-3135, a denial-of-service vulnerability that can affect resolvers using both DNS64 and RPZ to rewrite responses for the same view.

This affects all BIND 9.9 releases since 9.9.3, all BIND 9.10 releases, and all BIND 9.11 releases, including the 9.9.10b1, 9.10.5b1, and 9.11.1b1 releases.

Mitigation: Upgrade to the patched release most closely related to your current version of BIND.  These can all be downloaded from http://www.isc.org/downloads.

•     BIND 9 version 9.9.9-P6
•     BIND 9 version 9.10.4-P6
•     BIND 9 version 9.11.0-P3

BIND Supported Preview Edition is a special feature preview branch of BIND provided to eligible ISC support customers.

•     BIND 9 version 9.9.9-S8

 Reference URL’s:

• https://kb.isc.org/article/AA-01453
• https://www.jpcert.or.jp/english/at/2017/at170007.html

CIRT Team

Recommended Posts

Cyber Threat Alert: Surge in Attacks via Compromised Third-Party Service Providers

08 Feb 2024 - Articles, English articles, Security Advisories & Alerts

বাংলাদেশের আইটি কাঠামোয় তথ্য চুরির ম্যালওয়ারের বিস্তার সম্পর্কে সতর্কতা

18 Jan 2024 - Articles, Bangla Articles, News, Security Advisories & Alerts

সাইবার থ্রেট এলার্টঃ বাংলাদেশকে লক্ষ্য করে চলমান ফিশিং ক্যাম্পেইন

04 Jan 2024 - News, Security Advisories & Alerts