{"id":"CVE-2016-9147","details":"named in ISC BIND 9.9.9-P4, 9.9.9-S6, 9.10.4-P4, and 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a response containing an inconsistency among the DNSSEC-related RRsets.","modified":"2026-07-08T10:54:50.493583Z","published":"2017-01-12T06:59:00.280Z","related":["CGA-fwr3-w469-gjp2","SUSE-SU-2017:0111-1","SUSE-SU-2017:0112-1","SUSE-SU-2017:0113-1"],"references":[{"type":"WEB","url":"http://www.securityfocus.com/bid/95390"},{"type":"WEB","url":"http://www.securitytracker.com/id/1037582"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2017-0062.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2017-0063.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2017-0064.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2017/dsa-3758"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:1582"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:1583"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201708-01"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20180926-0005/"},{"type":"FIX","url":"https://kb.isc.org/article/AA-01440/74/CVE-2016-9147"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/isc-projects/bind9","events":[{"introduced":"53185941dd83e11acf5ea5ebca9748987159803a"},{"last_affected":"dca6957b62013f523e54084c92152f571d08f6c0"}],"database_specific":{"cpe":["cpe:2.3:a:isc:bind:9.9.9:p4:*:*:*:*:*:*","cpe:2.3:a:isc:bind:9.9.9:s6:*:*:*:*:*:*","cpe:2.3:a:isc:bind:9.10.4:p4:*:*:*:*:*:*","cpe:2.3:a:isc:bind:9.11.0:p1:*:*:*:*:*:*"],"source":"CPE_STRING","extracted_events":[{"introduced":"9.9.9-p4"},{"last_affected":"9.9.9-p4"},{"introduced":"9.9.9-s6"},{"last_affected":"9.9.9-s6"},{"introduced":"9.10.4-p4"},{"last_affected":"9.10.4-p4"},{"introduced":"9.11.0-p1"},{"last_affected":"9.11.0-p1"}]}}],"versions":["9.10.4-p4","9.11.0-p1","9.9.9-p4","9.9.9-s6"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-9147.json"}},{"ranges":[{"type":"GIT","repo":"https://gitlab.isc.org/isc-projects/bind9","events":[{"introduced":"53185941dd83e11acf5ea5ebca9748987159803a"},{"last_affected":"dca6957b62013f523e54084c92152f571d08f6c0"}],"database_specific":{"cpe":["cpe:2.3:a:isc:bind:9.9.9:p4:*:*:*:*:*:*","cpe:2.3:a:isc:bind:9.9.9:s6:*:*:*:*:*:*","cpe:2.3:a:isc:bind:9.10.4:p4:*:*:*:*:*:*","cpe:2.3:a:isc:bind:9.11.0:p1:*:*:*:*:*:*"],"source":"CPE_STRING","extracted_events":[{"introduced":"9.9.9-p4"},{"last_affected":"9.9.9-p4"},{"introduced":"9.9.9-s6"},{"last_affected":"9.9.9-s6"},{"introduced":"9.10.4-p4"},{"last_affected":"9.10.4-p4"},{"introduced":"9.11.0-p1"},{"last_affected":"9.11.0-p1"}]}}],"versions":["9.10.4-p4","9.11.0-p1","9.9.9-p4","9.9.9-s6"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-9147.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}