Isc · Isc Bind 9.X · CVE-2016-8864
**Name of the Vulnerable Software and Affected Versions**
ISC BIND 9.x versions 9.9.9 through 9.9.9-P3
ISC BIND 9.x versions 9.10.x through 9.10.4-P3
ISC BIND 9.x versions 9.11.x through 9.11.0
**Description**
The issue is related to errors in data processing, which can be exploited by a remote attacker to cause a denial of service. This can be achieved by sending a specially crafted DNS packet with malformed options, triggering an assertion failure. The vulnerability is also related to DNAME records in the answer section of a response to a recursive query.
**Recommendations**
For ISC BIND 9.x versions 9.9.9 through 9.9.9-P3, update to version 9.9.9-P4 or later.
For ISC BIND 9.x versions 9.10.x through 9.10.4-P3, update to version 9.10.4-P4 or later.
For ISC BIND 9.x versions 9.11.x through 9.11.0, update to version 9.11.0-P1 or later.