GCVE - cpe:2.3:a:isc:bind:9.11.0:p3:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:isc:bind:9.11.0:p3:*:*:*:*:*:*

part: a version: 9.11.0 update: p3

Vendor	Isc (`4a2f2b37-98b6-5702-822d-72afcd17d050`)
Product	Bind (`ea404969-e27c-5a4f-ab6f-da9eff8fdf08`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/isc-projects/bind9`	purl2cpe	2026-06-01 10:15:10.821344
`pkg:gitlab/isc-projects/bind9`	purl2cpe	2026-06-01 10:15:10.821346

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2017-3138`	vulnerable	2026-06-03 14:37:09.630469	named exits with a REQUIRE assertion failure if it receives a null command string on its control channel MEDIUM (6.5) named contains a feature which allows operators to issue commands to a running server by communicating with the server process over a control channel, using a utility program such as rndc. A regression introduced in a recent feature change has created a situation under which some versions of named can be caused to exit with a REQUIRE assertion failure if they are sent a null command string. Affects BIND 9.9.9->9.9.9-P7, 9.9.10b1->9.9.10rc2, 9.10.4->9.10.4-P7, 9.10.5b1->9.10.5rc2, 9.11.0->9.11.0-P4, 9.11.1b1->9.11.1rc2, 9.9.9-S1->9.9.9-S9. Published: 2019-01-16T20:00:00.000Z Updated: 2024-09-16T22:40:54.323Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id/1038260 http://www.securityfocus.com/bid/97657 https://security.gentoo.org/glsa/201708-01 https://security.netapp.com/advisory/ntap-20180802-0002/ https://www.debian.org/security/2017/dsa-3854	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-3137`	vulnerable	2026-06-03 14:37:09.611838	A response packet can cause a resolver to terminate when processing an answer containing a CNAME or DNAME HIGH (7.5) Mistaken assumptions about the ordering of records in the answer section of a response containing CNAME or DNAME resource records could lead to a situation in which named would exit with an assertion failure when processing a response in which records occurred in an unusual order. Affects BIND 9.9.9-P6, 9.9.10b1->9.9.10rc1, 9.10.4-P6, 9.10.5b1->9.10.5rc1, 9.11.0-P3, 9.11.1b1->9.11.1rc1, and 9.9.9-S8. Published: 2019-01-16T20:00:00.000Z Updated: 2024-09-17T01:02:07.037Z Open on db.gcve.eu Reference links https://access.redhat.com/errata/RHSA-2017:1095 https://security.gentoo.org/glsa/201708-01 http://www.securitytracker.com/id/1038258 https://security.netapp.com/advisory/ntap-20180802-0002/ http://www.securitytracker.com/id/1040195	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-3136`	vulnerable	2026-06-03 14:37:09.605687	An error handling synthesized records could cause an assertion failure when using DNS64 with "break-dnssec yes;" MEDIUM (5.9) A query with a specific set of characteristics could cause a server using DNS64 to encounter an assertion failure and terminate. An attacker could deliberately construct a query, enabling denial-of-service against a server if it was configured to use the DNS64 feature and other preconditions were met. Affects BIND 9.8.0 -> 9.8.8-P1, 9.9.0 -> 9.9.9-P6, 9.9.10b1->9.9.10rc1, 9.10.0 -> 9.10.4-P6, 9.10.5b1->9.10.5rc1, 9.11.0 -> 9.11.0-P3, 9.11.1b1->9.11.1rc1, 9.9.3-S1 -> 9.9.9-S8. Published: 2019-01-16T20:00:00.000Z Updated: 2024-09-17T00:51:35.181Z Open on db.gcve.eu Reference links https://access.redhat.com/errata/RHSA-2017:1095 https://security.gentoo.org/glsa/201708-01 https://security.netapp.com/advisory/ntap-20180802-0002/ https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03747en_us https://www.debian.org/security/2017/dsa-3854	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.