Einar Lonn

**Name of the Vulnerable Software and Affected Versions** ISC BIND versions 9.4.x through 9.7.x before 9.7.6-P2 ISC BIND versions 9.8.x before 9.8.3-P2 ISC BIND versions 9.9.x before 9.9.1-P2 ISC BIND 9.6-ESV before 9.6-ESV-R7-P2 **Description** The issue occurs when DNSSEC validation is enabled and the failing-query cache is not properly initialized, allowing remote attackers to cause a denial of service by sending many queries, resulting in an assertion failure and daemon exit. **Recommendations** For ISC BIND versions 9.4.x through 9.7.x before 9.7.6-P2, update to version 9.7.6-P2 or later. For ISC BIND versions 9.8.x before 9.8.3-P2, update to version 9.8.3-P2 or later. For ISC BIND versions 9.9.x before 9.9.1-P2, update to version 9.9.1-P2 or later. For ISC BIND 9.6-ESV before 9.6-ESV-R7-P2, update to version 9.6-ESV-R7-P2 or later.