Mark Andrews

**Name of the Vulnerable Software and Affected Versions** ISC BIND versions 9.4.0, and 9.5.0a1 through 9.5.0a3 **Description** The issue is related to an unspecified vulnerability in the query.c file of ISC BIND. When recursion is enabled, remote attackers can cause a denial of service by sending a sequence of queries that are processed by the `query addsoa` function, leading to the daemon exiting. **Recommendations** For ISC BIND version 9.4.0, update to a version that fixes this issue. For ISC BIND versions 9.5.0a1 through 9.5.0a3, update to a version that fixes this issue. As a temporary workaround, consider disabling recursion to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** ISC BIND versions 9.0.x through 9.5.0a1 **Description** The issue allows remote attackers to cause a denial of service via a type * (ANY) DNS query response that contains multiple RRsets, triggering an assertion error. **Recommendations** For versions 9.0.x through 9.5.0a1, update to a version that is not affected by this issue to prevent remote attackers from causing a denial of service.