GCVE - cpe:2.3:a:isc:bind:9.8.2:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:isc:bind:9.8.2:*:*:*:*:*:*:*

part: a version: 9.8.2 update: *

Vendor	Isc (`4a2f2b37-98b6-5702-822d-72afcd17d050`)
Product	Bind (`ea404969-e27c-5a4f-ab6f-da9eff8fdf08`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/isc-projects/bind9`	purl2cpe	2026-06-01 10:15:11.122315
`pkg:gitlab/isc-projects/bind9`	purl2cpe	2026-06-01 10:15:11.122316

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2016-2848`	vulnerable	2026-06-03 14:35:44.196198	Details available ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via malformed options data in an OPT resource record. Published: 2016-10-21T10:00:00.000Z Updated: 2024-08-05T23:32:21.181Z Open on db.gcve.eu Reference links http://rhn.redhat.com/errata/RHSA-2016-2093.html http://www.securitytracker.com/id/1037073 https://security.netapp.com/advisory/ntap-20180926-0005/ https://security.netapp.com/advisory/ntap-20180926-0002/ https://kb.isc.org/article/AA-01433/74/CVE-2016-2848	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-8500`	vulnerable	2026-06-03 14:34:24.164077	Details available ISC BIND 9.0.x through 9.8.x, 9.9.0 through 9.9.6, and 9.10.0 through 9.10.1 does not limit delegation chaining, which allows remote attackers to cause a denial of service (memory consumption and named crash) via a large or infinite number of referrals. Published: 2014-12-11T02:00:00.000Z Updated: 2024-08-06T13:18:48.302Z Open on db.gcve.eu Reference links http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html http://marc.info/?l=bugtraq&m=142180687100892&w=2 http://security.gentoo.org/glsa/glsa-201502-03.xml http://secunia.com/advisories/62122 http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2015-002.txt.asc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-5166`	vulnerable	2026-06-03 14:32:27.914647	Details available ISC BIND 9.x before 9.7.6-P4, 9.8.x before 9.8.3-P4, 9.9.x before 9.9.1-P4, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P4 allows remote attackers to cause a denial of service (named daemon hang) via unspecified combinations of resource records. Published: 2012-10-10T21:00:00.000Z Updated: 2024-08-06T20:58:03.101Z Open on db.gcve.eu Reference links http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html http://www.ibm.com/support/docview.wss?uid=isg1IV30365 http://www.ibm.com/support/docview.wss?uid=isg1IV30185 http://rhn.redhat.com/errata/RHSA-2012-1363.html http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.536004	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-4244`	vulnerable	2026-06-03 14:32:18.137270	Details available ISC BIND 9.x before 9.7.6-P3, 9.8.x before 9.8.3-P3, 9.9.x before 9.9.1-P3, and 9.4-ESV and 9.6-ESV before 9.6-ESV-R7-P3 allows remote attackers to cause a denial of service (assertion failure and named daemon exit) via a query for a long resource record. Published: 2012-09-14T00:00:00.000Z Updated: 2024-08-06T20:28:07.596Z Open on db.gcve.eu Reference links http://www.debian.org/security/2012/dsa-2547 http://www.ubuntu.com/usn/USN-1566-1 http://marc.info/?l=bugtraq&m=141879471518471&w=2 http://marc.info/?l=bugtraq&m=141879471518471&w=2 http://secunia.com/advisories/51096	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.