{"id":"CVE-2017-3138","details":"named contains a feature which allows operators to issue commands to a running server by communicating with the server process over a control channel, using a utility program such as rndc. A regression introduced in a recent feature change has created a situation under which some versions of named can be caused to exit with a REQUIRE assertion failure if they are sent a null command string. Affects BIND 9.9.9-\u003e9.9.9-P7, 9.9.10b1-\u003e9.9.10rc2, 9.10.4-\u003e9.10.4-P7, 9.10.5b1-\u003e9.10.5rc2, 9.11.0-\u003e9.11.0-P4, 9.11.1b1-\u003e9.11.1rc2, 9.9.9-S1-\u003e9.9.9-S9.","modified":"2026-04-16T06:17:59.977798745Z","published":"2019-01-16T20:29:00.407Z","related":["CGA-949p-346g-pfjm","SUSE-SU-2017:0998-1","SUSE-SU-2017:0999-1","SUSE-SU-2017:1000-1"],"references":[{"type":"ADVISORY","url":"https://kb.isc.org/docs/aa-01471"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201708-01"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20180802-0002/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2017/dsa-3854"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/97657"},{"type":"ADVISORY","url":"http://www.securitytracker.com/id/1038260"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/isc-projects/bind9","events":[{"introduced":"0"},{"last_affected":"f8a0c0bed6ed629e314d22619510939c61d88b0e"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"8.0"}]}},{"type":"GIT","repo":"https://gitlab.isc.org/isc-projects/bind9","events":[{"introduced":"0"},{"last_affected":"b7843f9794be456c53d7dc0b51ead89f2c5d3351"},{"introduced":"0"},{"last_affected":"9833cd85a811d3a4313948f324d3906937633e65"},{"introduced":"0"},{"last_affected":"d6d860e96ed5b20c1a77d5d19a29194174a1e5a0"},{"introduced":"0"},{"last_affected":"1b68143f200f6b88cc7d395f600e63b5c28362c8"},{"introduced":"0"},{"last_affected":"53185941dd83e11acf5ea5ebca9748987159803a"},{"introduced":"0"},{"last_affected":"1ab232a0c0ae0882b1f50d82112175c0c1d9e92c"},{"introduced":"0"},{"last_affected":"67d38a63139de8be0f3a307d1f6a9ad16770edac"},{"introduced":"0"},{"last_affected":"9833cd85a811d3a4313948f324d3906937633e65"},{"introduced":"0"},{"last_affected":"c7fb2ad1605536230063bdbfd31dc9c2874f5ecd"},{"introduced":"0"},{"last_affected":"ba9be2be7e2229128c4c740046fc1683417141bc"},{"introduced":"0"},{"last_affected":"a5e4938f2d3c9d89b3fda65bc2fe6755ecfeea72"},{"introduced":"0"},{"last_affected":"632f9848811641da54fbb78c38e91a263b03d85a"},{"introduced":"0"},{"last_affected":"d36f894b881427035c9163b939cb64c75e6fdd7a"},{"introduced":"0"},{"last_affected":"2f98c1c2a0b92c83cd9a9e6d53363537f4819c40"},{"introduced":"0"},{"last_affected":"853aa4b2e04de28173429fc24780b21fadb5cef5"},{"introduced":"0"},{"last_affected":"2b12043ba0debf1aba08ddd0914aff287e46978a"},{"introduced":"0"},{"last_affected":"a6837d0b7879b828a394bfab852dc1b45e7fbc8b"},{"introduced":"0"},{"last_affected":"341e64a2de908ceec50ed46d243bf3402342735c"},{"introduced":"0"},{"last_affected":"66d4de0075b24a264b19bd594835f66a17f51385"},{"introduced":"0"},{"last_affected":"7f90852277b27c01a32fef0c4c5c2f53e78d296e"},{"introduced":"0"},{"last_affected":"1477c19dd9a347ee19a42dac227f299a4680506f"},{"introduced":"0"},{"last_affected":"dca6957b62013f523e54084c92152f571d08f6c0"},{"introduced":"0"},{"last_affected":"111ec860a840d09dbd0551044e5fdc37d546c6b6"},{"introduced":"0"},{"last_affected":"a23f742c3d767f41bfb1a143b0605a766936c4d9"},{"introduced":"0"},{"last_affected":"e7f06a85359873b4822acac1b87a885310fd6ac2"},{"introduced":"0"},{"last_affected":"ece26dd7d7f8b61e854ecb59325c18b3d3c8630a"},{"introduced":"0"},{"last_affected":"f9ecaf8a4a4050fff73ba9939098edf4591aef75"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"9.9.9"},{"introduced":"0"},{"last_affected":"9.9.9-p1"},{"introduced":"0"},{"last_affected":"9.9.9-p2"},{"introduced":"0"},{"last_affected":"9.9.9-p3"},{"introduced":"0"},{"last_affected":"9.9.9-p4"},{"introduced":"0"},{"last_affected":"9.9.9-p5"},{"introduced":"0"},{"last_affected":"9.9.9-p6"},{"introduced":"0"},{"last_affected":"9.9.9-s1"},{"introduced":"0"},{"last_affected":"9.9.10-rc1"},{"introduced":"0"},{"last_affected":"9.9.10-rc2"},{"introduced":"0"},{"last_affected":"9.10.4"},{"introduced":"0"},{"last_affected":"9.10.4-p1"},{"introduced":"0"},{"last_affected":"9.10.4-p2"},{"introduced":"0"},{"last_affected":"9.10.4-p3"},{"introduced":"0"},{"last_affected":"9.10.4-p4"},{"introduced":"0"},{"last_affected":"9.10.4-p5"},{"introduced":"0"},{"last_affected":"9.10.4-p6"},{"introduced":"0"},{"last_affected":"9.10.5-b1"},{"introduced":"0"},{"last_affected":"9.10.5-rc1"},{"introduced":"0"},{"last_affected":"9.10.5-rc2"},{"introduced":"0"},{"last_affected":"9.11.0"},{"introduced":"0"},{"last_affected":"9.11.0-p1"},{"introduced":"0"},{"last_affected":"9.11.0-p2"},{"introduced":"0"},{"last_affected":"9.11.0-p3"},{"introduced":"0"},{"last_affected":"9.11.1-b1"},{"introduced":"0"},{"last_affected":"9.11.1-rc1"},{"introduced":"0"},{"last_affected":"9.11.1-rc2"}]}}],"versions":["ondrej/008bfb6249a5f81d9e02ad4d39fda63fab57a0ad","ondrej/00ce93a69cd809810b82dbb229abf59d8e5850cc","ondrej/067f87f158b633e18a9c6fd0b038d1dc288bcb74","ondrej/074c7cc12c0eda40441926a8a96631c3176824a9","ondrej/1a1413ff5910ace7919bb8db0a1bb1f6e9c9ff7d","ondrej/2438db2eae8baf084615aff3b210ea51cd2f1fe1","ondrej/4098157e6ce98910ff99c58c41c6cf8069b79cc7","ondrej/4281aaab4503116fcf50caa348e1b5e7d414b742","ondrej/42e84e4b97be23f2b3754844e9d4478f48e92b48","ondrej/46caf5f4a4522d42480aee4d5949ea9546f98c2f","ondrej/4d292fc37ff5e99462756352c6028af7d0becf74","ondrej/4f369af51ede0e5ac7b3a14c451c5a41350a61cc","ondrej/53738634c3b511bd78e6626df95ae140631b080c","ondrej/6d06e7e7e585e30b419e4e20815cb8233c48f7b1","ondrej/6d1fdb850516a8d1fbfa853c56a1ef7627d54a72","ondrej/761b47a64845cb647d4fa3362be538eb0e7174d9","ondrej/840e56a979c3719ded668d5aaa04b1bddce465ef","ondrej/9cd2880a82f627bc44ab65fdaa19c2bcd9e61c96","ondrej/a42afbce2e34a5f990517fee7eab013c4adb8c0a","ondrej/a5f554959ec531712f6e14a8cb8c90d87cc27932","ondrej/b177581bb230d89821d1e2e5e91f93bee3fc4192","ondrej/b6298b394e9eaefcfa2458cd56c345d778e99b8e","ondrej/be1e6499742e241d71c7e79434e278a0c89d141b","ondrej/c63b7fad498dbe56710b655bd296a58abba64bb8","ondrej/d7e5f7903de06e504aac4a3822a41d69e159e370","ondrej/e00b13ac6e5a49434fbe534b0cab86b9ee4fbdb5","ondrej/f8a0c0bed6ed629e314d22619510939c61d88b0e","ondrej/fb07c38697c9f4f76dcb921487c4f96813c99b69","v9.10.0a1","v9.10.0a2","v9.10.0b1","v9.10.0b2","v9.10.0rc1","v9.10.0rc2","v9.10.1","v9.10.1b1","v9.10.1b2","v9.10.1rc1","v9.10.1rc2","v9.10.2","v9.10.2b1","v9.10.2rc1","v9.10.2rc2","v9.10.3","v9.10.3b1","v9.10.3rc1","v9.10.4","v9.10.4-P1","v9.10.4-P2","v9.10.4-P3","v9.10.4-P4","v9.10.4-P5","v9.10.4-P6","v9.10.4b1","v9.10.4b2","v9.10.4b3","v9.10.4rc1","v9.10.5b1","v9.10.5rc1","v9.10.5rc2","v9.11.0","v9.11.0a1","v9.11.0a2","v9.11.0a3","v9.11.0b1","v9.11.0b2","v9.11.0b3","v9.11.0rc1","v9.11.0rc2","v9.11.0rc3","v9.11.1b1","v9.11.1rc1","v9.11.1rc2","v9.12.0a1","v9.12.0b1","v9.12.0b2","v9.12.0rc1","v9.13.0","v9.13.2","v9.13.3","v9.13.4","v9.13.5","v9.13.6","v9.15.0","v9.15.2","v9.15.3","v9.15.4","v9.15.7","v9.15.8","v9.19.0","v9.5.0a1","v9.5.0a2","v9.5.0a3","v9.5.0a4","v9.5.0a5","v9.5.0a6","v9.7.0a1","v9.9.0","v9.9.0rc3","v9.9.0rc4","v9.9.1","v9.9.10b1","v9.9.10rc1","v9.9.10rc2","v9.9.2b1","v9.9.2rc1","v9.9.3","v9.9.3b1","v9.9.3b2","v9.9.3rc1","v9.9.3rc2","v9.9.4","v9.9.4b1","v9.9.4rc2","v9.9.5","v9.9.5b1","v9.9.5rc1","v9.9.5rc2","v9.9.6","v9.9.6b1","v9.9.6b2","v9.9.6rc1","v9.9.6rc2","v9.9.7","v9.9.7b1","v9.9.7rc1","v9.9.7rc2","v9.9.8","v9.9.8b1","v9.9.8rc1","v9.9.9","v9.9.9-P1","v9.9.9-P2","v9.9.9-P3","v9.9.9-P4","v9.9.9-P5","v9.9.9-P6","v9.9.9b1","v9.9.9b2","v9.9.9rc1"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-3138.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"9.9.9-p7"}]},{"events":[{"introduced":"0"},{"last_affected":"9.9.9-s7"}]},{"events":[{"introduced":"0"},{"last_affected":"9.9.10-beta1"}]},{"events":[{"introduced":"0"},{"last_affected":"9.10.4-p7"}]},{"events":[{"introduced":"0"},{"last_affected":"9.11.0-p4"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}