ArchLinux: 201702-8: bind: denial of service
Summary
A vulnerability has been found in bind < 9.11.0-P3, allowing a remote attacker to trigger an INSIST assertion failure or a NULL pointer read in configurations using both DNS64 and RPZ.
Resolution
Upgrade to 9.11.0.P3-1.
# pacman -Syu "bind>=9.11.0.P3-1"
The problem has been fixed upstream in version 9.11.0.P3.
References
https://kb.isc.org/docs/aa-01453 https://security.archlinux.org/CVE-2017-3135
Workaround
None.