Isc · Isc Bind · CVE-2013-2266
**Name of the Vulnerable Software and Affected Versions**
ISC BIND versions 9.7.x through 9.8.3, versions 9.8.5 through 9.8.5b1, versions 9.9.x through 9.9.2-P1, and version 9.9.3 through 9.9.3b1
**Description**
The issue allows remote attackers to cause a denial of service, specifically memory consumption, via a crafted regular expression. This can be demonstrated by a memory-exhaustion attack against a machine running a named process.
**Recommendations**
For versions 9.7.x, update to version 9.8.4-P2 or later.
For versions 9.8.x before 9.8.4-P2, update to version 9.8.4-P2 or later.
For version 9.8.5 before 9.8.5b2, update to version 9.8.5b2 or later.
For versions 9.9.x before 9.9.2-P2, update to version 9.9.2-P2 or later.
For version 9.9.3 before 9.9.3b2, update to version 9.9.3b2 or later.