Unrated severityNVD Advisory· Published Jul 29, 2015· Updated May 6, 2026
CVE-2015-5477
CVE-2015-5477
Description
named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via TKEY queries.
Affected products
17- osv-coords17 versionspkg:rpm/opensuse/bind&distro=openSUSE%20Tumbleweedpkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP3pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP1-LTSSpkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP1-TERADATApkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSSpkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATApkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP3pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP3pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/bind&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012
< 9.10.3P4-21.1+ 16 more
- (no CPE)range: < 9.10.3P4-21.1
- (no CPE)range: < 9.9.6P1-0.12.1
- (no CPE)range: < 9.9.6P1-0.12.1
- (no CPE)range: < 9.9.6P1-23.1
- (no CPE)range: < 9.6ESVR11W1-0.6.1
- (no CPE)range: < 9.6ESVR11W1-0.6.1
- (no CPE)range: < 9.9.6P1-0.12.1
- (no CPE)range: < 9.9.6P1-0.12.1
- (no CPE)range: < 9.9.6P1-0.12.1
- (no CPE)range: < 9.9.6P1-0.12.1
- (no CPE)range: < 9.9.6P1-23.1
- (no CPE)range: < 9.9.6P1-0.12.1
- (no CPE)range: < 9.9.6P1-0.12.1
- (no CPE)range: < 9.9.6P1-23.1
- (no CPE)range: < 9.9.6P1-0.12.1
- (no CPE)range: < 9.9.6P1-0.12.1
- (no CPE)range: < 9.9.6P1-23.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
42- kb.isc.org/article/AA-01272nvdPatchVendor Advisory
- kb.juniper.net/InfoCenter/indexnvd
- lists.fedoraproject.org/pipermail/package-announce/2015-August/163006.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2015-August/163007.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2015-August/163015.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-07/msg00043.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-07/msg00044.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-07/msg00045.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-07/msg00048.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-07/msg00050.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-08/msg00001.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2016-01/msg00033.htmlnvd
- marc.infonvd
- marc.infonvd
- marc.infonvd
- marc.infonvd
- packetstormsecurity.com/files/132926/BIND-TKEY-Query-Denial-Of-Service.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1513.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1514.htmlnvd
- rhn.redhat.com/errata/RHSA-2015-1515.htmlnvd
- rhn.redhat.com/errata/RHSA-2016-0078.htmlnvd
- rhn.redhat.com/errata/RHSA-2016-0079.htmlnvd
- www.debian.org/security/2015/dsa-3319nvd
- www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.htmlnvd
- www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlnvd
- www.securityfocus.com/bid/76092nvd
- www.securitytracker.com/id/1033100nvd
- www.ubuntu.com/usn/USN-2693-1nvd
- h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvd
- h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvd
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvd
- kb.isc.org/article/AA-01305nvd
- kb.isc.org/article/AA-01306nvd
- kb.isc.org/article/AA-01307nvd
- kb.isc.org/article/AA-01438nvd
- kb.juniper.net/JSA10783nvd
- kc.mcafee.com/corporate/indexnvd
- security.gentoo.org/glsa/201510-01nvd
- security.netapp.com/advisory/ntap-20160114-0001/nvd
- support.apple.com/kb/HT205032nvd
- www.exploit-db.com/exploits/37721/nvd
- www.exploit-db.com/exploits/37723/nvd
News mentions
0No linked articles in our index yet.