A flaw was discovered in Bind’s DNSSEC validation code. Remote
attackers could send a specially crafted DNS query which would cause the
Bind server to crash, resulting in a denial of service. Only servers
configured to use DNSSEC extensions were vulnerable.