1
Candidate: CVE-2016-6170
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6170
5
https://lists.dns-oarc.net/pipermail/dns-operations/2016-July/015075.html
6
https://lists.dns-oarc.net/pipermail/dns-operations/2016-July/015073.html
7
https://lists.dns-oarc.net/pipermail/dns-operations/2016-July/015058.html
8
https://github.com/sischkg/xfer-limit/blob/master/README.md
9
http://www.openwall.com/lists/oss-security/2016/07/06/3
10
https://kb.isc.org/article/AA-01390/0/Operational-Notification%3A-A-party-that-is-allowed-control-over-zone-data-can-overwhelm-a-server-by-transferring-huge-quantities-of-data.html
12
ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x through
13
9.11.0b1 allows primary DNS servers to cause a denial of service (secondary
14
DNS server crash) via a large AXFR response, and possibly allows IXFR
15
servers to cause a denial of service (IXFR client crash) via a large IXFR
16
response and allows remote authenticated users to cause a denial of service
17
(primary DNS server crash) via a large UPDATE message.
21
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=830810
22
https://bugzilla.redhat.com/show_bug.cgi?id=1353563
28
other: https://github.com/sischkg/xfer-limit/blob/master/bind-9.10.3-xfer-limit-0.0.1.patch
29
other: https://github.com/sischkg/xfer-limit/blob/master/bind-9.9.9-P1-xfer-limit-0.0.1.patch
30
upstream_bind9: needs-triage
31
precise_bind9: ignored (reached end-of-life)
32
precise/esm_bind9: needed
34
vivid/stable-phone-overlay_bind9: ignored (reached end-of-life)
35
vivid/ubuntu-core_bind9: ignored (reached end-of-life)
36
wily_bind9: ignored (reached end-of-life)
38
yakkety_bind9: ignored (reached end-of-life)
39
zesty_bind9: ignored (reached end-of-life)
41
bionic_bind9: not-affected (1:9.11.2.P1-1ubuntu3)
42
devel_bind9: not-affected (1:9.11.2.P1-1ubuntu3)