Description
* A denial of service flaw was found in the way BIND handled responses
containing a DNAME answer. A remote attacker could use this flaw to make named
exit unexpectedly with an assertion failure via a specially crafted DNS
response. (CVE-2016-8864)
* A denial of service flaw was found in the way BIND processed a response to an
ANY query. A remote attacker could use this flaw to make named exit unexpectedly
with an assertion failure via a specially crafted DNS response. (CVE-2016-9131)
* A denial of service flaw was found in the way BIND handled a query response
containing inconsistent DNSSEC information. A remote attacker could use this
flaw to make named exit unexpectedly with an assertion failure via a specially
crafted DNS response. (CVE-2016-9147)
* A denial of service flaw was found in the way BIND handled an unusually-formed
DS record response. A remote attacker could use this flaw to make named exit
unexpectedly with an assertion failure via a specially crafted DNS response.
(CVE-2016-9444)
* A denial of service flaw was found in the way BIND handled a query response
containing CNAME or DNAME resource records in an unusual order. A remote
attacker could use this flaw to make named exit unexpectedly with an assertion
failure via a specially crafted DNS response. (CVE-2017-3137)