{ "affected": [ { "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "last_affected": "9.9.8-s1" }, { "introduced": "0" }, { "last_affected": "9.9.8-s2" }, { "introduced": "0" }, { "last_affected": "9.9.8-s3" }, { "introduced": "0" }, { "last_affected": "9.9.8-s4" } ] }, "events": [ { "introduced": "0" }, { "last_affected": "eca0e613ded09761d915390d9c3650e462710b8f" }, { "introduced": "0" }, { "last_affected": "8f4dc43fe932252669a55d1c7adda6b8d448962c" }, { "introduced": "0" }, { "last_affected": "c6638fb2591d18b05088be5469a217caa6e3dca5" }, { "introduced": "0" }, { "last_affected": "deea0d7033849202a9ec7fdab262908713cbdde2" } ], "repo": "https://gitlab.isc.org/isc-projects/bind9", "type": "GIT" } ] } ], "details": "rdataset.c in ISC BIND 9 Supported Preview Edition 9.9.8-S before 9.9.8-S5, when nxdomain-redirect is enabled, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via crafted flag values in a query.", "id": "CVE-2016-1284", "modified": "2026-03-13T21:56:04.478647033Z", "published": "2016-02-04T11:59:01.097Z", "references": [ { "type": "WEB", "url": "http://www.securitytracker.com/id/1034935" }, { "type": "ADVISORY", "url": "https://kb.isc.org/article/AA-01348" }, { "type": "ADVISORY", "url": "https://kb.isc.org/article/AA-01438" } ], "severity": [ { "score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "type": "CVSS_V3" } ] }