CVE-2021-25218

Name of the Vulnerable Software and Affected Versions BIND versions 9.16.19 through 9.17.16 BIND Supported Preview Edition version 9.16.19-S1

Description The issue is related to insufficient use of the assert() function in the named component of the DNS server BIND. When a vulnerable version of named receives a query, the named process will terminate due to a failed assertion check. This allows a remote attacker to cause a denial of service.

Recommendations For BIND versions 9.16.19 through 9.17.16, update to version 9.17.17 or 9.16.20 to resolve the issue. For BIND Supported Preview Edition version 9.16.19-S1, update to a version that includes the security patches, such as version 9.16.20.