An attacker who is permitted to send zone data to a server via zone transfer can exploit this to intentionally trigger the assertion failure with a specially constructed zone, denying service to clients.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "bind9-doc": "1:9.16.1-0ubuntu2.2", "bind9-dnsutils-dbgsym": "1:9.16.1-0ubuntu2.2", "bind9-host": "1:9.16.1-0ubuntu2.2", "bind9-host-dbgsym": "1:9.16.1-0ubuntu2.2", "bind9utils": "1:9.16.1-0ubuntu2.2", "bind9-dbgsym": "1:9.16.1-0ubuntu2.2", "bind9-libs": "1:9.16.1-0ubuntu2.2", "bind9": "1:9.16.1-0ubuntu2.2", "bind9-utils": "1:9.16.1-0ubuntu2.2", "bind9-dnsutils": "1:9.16.1-0ubuntu2.2", "bind9-libs-dbgsym": "1:9.16.1-0ubuntu2.2", "bind9-utils-dbgsym": "1:9.16.1-0ubuntu2.2", "dnsutils": "1:9.16.1-0ubuntu2.2" } ] }