CVE-2015-8705

Name of the Vulnerable Software and Affected Versions ISC BIND 9.10.x versions prior to 9.10.3-P3

Description The issue exists due to insufficient input validation, allowing a remote attacker to exploit it and potentially cause a denial of service or other impact, such as the appearance of an "Assertion failure" error window or the termination of the daemon. This can be achieved via OPT data or an ECS option when debug logging is enabled.

Recommendations For ISC BIND 9.10.x versions prior to 9.10.3-P3, update to version 9.10.3-P3 or later to resolve the issue. As a temporary workaround, consider disabling debug logging until a patch is available. Restrict access to the buffer.c in named to minimize the risk of exploitation. Avoid using OPT data or the ECS option in the affected API endpoint until the issue is resolved.