Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description.

Description: The issue concerns DNSSEC validation routines, which treat entire RRsets of DNSKEY records as trusted once they have established trust in only one of the DNSKEYs. This can lead to trust in signatures made by an unrelated DNSKEY in the same zone. The problem arises from the verify dnskey rrset() function returning Ok(true) if any record's public key matches a trust anchor, resulting in verify rrset() returning a Secure proof. Additionally, there is an issue with DS records, where an authenticated DS record covering one DNSKEY leads to trust in signatures made by an unrelated DNSKEY in the same zone. The verify default rrset() function also plays a role in this vulnerability, as it looks up DNSKEY records and may return a Secure proof without fully verifying the whole RRset of DNSKEYs.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.