Isc · Isc Bind · CVE-2015-4620
**Name of the Vulnerable Software and Affected Versions**
ISC BIND versions 9.7.x through 9.9.x before 9.9.7-P1
ISC BIND versions 9.10.x before 9.10.2-P2
**Description**
The issue allows remote attackers to cause a denial of service by constructing crafted zone data and then making a query for a name in that zone. This occurs when the software is configured as a recursive resolver with DNSSEC validation, leading to a REQUIRE assertion failure and daemon exit.
**Recommendations**
For versions 9.7.x through 9.9.x before 9.9.7-P1, update to version 9.9.7-P1 or later.
For versions 9.10.x before 9.10.2-P2, update to version 9.10.2-P2 or later.