FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

BIND -- Remote Denial of Service vulnerability

Affected packages
bind99 < 9.9.9P4
bind910 < 9.10.4P4
bind911 < 9.11.0P1
bind9-devel <= 9.12.0.a.2016.10.21
9.3 <= FreeBSD < 9.3_50

Details

VuXML ID 0b8d01a4-a0d2-11e6-9ca2-d050996490d0
Discovery 2016-11-01
Entry 2016-11-02

ISC reports:

A defect in BIND's handling of responses containing a DNAME answer can cause a resolver to exit after encountering an assertion failure in db.c or resolver.c

References

CVE Name CVE-2016-8864
FreeBSD Advisory SA-16:34.bind
URL https://kb.isc.org/article/AA-01434/