Candidate: CVE-2017-3140
PublicDate: 2019-01-16 20:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3140
 https://kb.isc.org/article/AA-01495
 http://www.openwall.com/lists/oss-security/2017/06/14/4
Description:
 If named is configured to use Response Policy Zones (RPZ) an error
 processing some rule types can lead to a condition where BIND will
 endlessly loop while handling a query. Affects BIND 9.9.10, 9.10.5,
 9.11.0->9.11.1, 9.9.10-S1, 9.10.5-S1.
Ubuntu-Description:
Notes:
 tyhicks> Per ISC, "... affecting 9.9.10, 9.10.5, 9.11.0->9.11.1, 9.9.10-S1,
  and 9.10.5-S1"
 tyhicks> Introduced by change #4377, which is not applied in any Ubuntu
  releases
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H [5.9 MEDIUM]

Patches_bind9:
upstream_bind9: needs-triage
precise/esm_bind9: not-affected (1:9.8.1.dfsg.P1-4ubuntu0.22)
trusty_bind9: not-affected (1:9.9.5.dfsg-3ubuntu0.14)
trusty/esm_bind9: not-affected (1:9.9.5.dfsg-3ubuntu0.14)
vivid/ubuntu-core_bind9: not-affected (1:9.9.5.dfsg-9ubuntu0.5)
xenial_bind9: not-affected (1:9.10.3.dfsg.P4-8ubuntu1.6)
esm-infra/xenial_bind9: not-affected (1:9.10.3.dfsg.P4-8ubuntu1.6)
yakkety_bind9: not-affected (1:9.10.3.dfsg.P4-10.1ubuntu1.6)
zesty_bind9: not-affected (1:9.10.3.dfsg.P4-10.1ubuntu5)
devel_bind9: not-affected (1:9.10.3.dfsg.P4-10.1ubuntu6)