{"id":"CVE-2016-8864","details":"named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNAME record in the answer section of a response to a recursive query, related to db.c and resolver.c.","modified":"2026-04-16T01:40:07.444004567Z","published":"2016-11-02T17:59:00.187Z","related":["SUSE-SU-2016:2696-1","SUSE-SU-2016:2697-1","SUSE-SU-2016:2697-2","SUSE-SU-2016:2706-1","openSUSE-SU-2024:10467-1"],"references":[{"type":"WEB","url":"https://kb.isc.org/article/AA-01435"},{"type":"WEB","url":"https://kb.isc.org/article/AA-01436"},{"type":"WEB","url":"https://kb.isc.org/article/AA-01437"},{"type":"WEB","url":"https://kb.isc.org/article/AA-01438"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-2141.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-2142.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-2615.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-2871.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3703"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/94067"},{"type":"ADVISORY","url":"http://www.securitytracker.com/id/1037156"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:1583"},{"type":"ADVISORY","url":"https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05381687"},{"type":"ADVISORY","url":"https://kb.isc.org/article/AA-01434"},{"type":"ADVISORY","url":"https://security.FreeBSD.org/advisories/FreeBSD-SA-16:34.bind.asc"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201701-26"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20180926-0005/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://gitlab.isc.org/isc-projects/bind9","events":[{"introduced":"19d6c56085e97cf4ac559cdc27edd624127bcb32"},{"fixed":"b7843f9794be456c53d7dc0b51ead89f2c5d3351"},{"introduced":"63fbb3ea39094353765c04a6066b9e1d1013992a"},{"fixed":"a5e4938f2d3c9d89b3fda65bc2fe6755ecfeea72"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-8864.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}