Tony Finch

**Name of the Vulnerable Software and Affected Versions** ISC BIND 9.x versions 9.9.9 through 9.9.9-P3 ISC BIND 9.x versions 9.10.x through 9.10.4-P3 ISC BIND 9.x versions 9.11.x through 9.11.0 **Description** The issue is related to errors in data processing, which can be exploited by a remote attacker to cause a denial of service. This can be achieved by sending a specially crafted DNS packet with malformed options, triggering an assertion failure. The vulnerability is also related to DNAME records in the answer section of a response to a recursive query. **Recommendations** For ISC BIND 9.x versions 9.9.9 through 9.9.9-P3, update to version 9.9.9-P4 or later. For ISC BIND 9.x versions 9.10.x through 9.10.4-P3, update to version 9.10.4-P4 or later. For ISC BIND 9.x versions 9.11.x through 9.11.0, update to version 9.11.0-P1 or later.