Robert Story

**Name of the Vulnerable Software and Affected Versions** BIND 9 versions 9.18.0 through 9.18.18 BIND 9 versions 9.18.11-S1 through 9.18.18-S1 **Description** A flaw in the networking code handling DNS-over-TLS queries may cause `named` to terminate unexpectedly due to an assertion failure. This happens when internal data structures are incorrectly reused under significant DNS-over-TLS query load. **Recommendations** For BIND 9 versions 9.18.0 through 9.18.18, update to a version that fixes the issue. For BIND 9 versions 9.18.11-S1 through 9.18.18-S1, update to a version that fixes the issue. As a temporary workaround, consider restricting the load of DNS-over-TLS queries to minimize the risk of exploitation.