Errata overview
Errata ID 440
Date 2016-07-07
Source package bind9
Fixed in version 1:9.8.4.dfsg.P1-6+nmu2.120.201607011019
This update addresses the following issues:
* Incorrect validation of DNSSEC-signed records in the Bind DNS server could
  result in denial of service (CVE-2015-5722)
* Responses with a malformed class attribute can trigger an assertion failure
  in db.c (CVE-2015-8000)
* Denial of service due to INSIST failure in apl_42.c triggered by specific
  APL RR data (CVE-2015-8704)
* Denial of service due to maliciously crafted rdnc command (CVE-2016-1285)
* Denial of service (crash) due to DNAME parsing error (CVE-2016-1286)
* Debug symbols are now generated and properly put into the package
Additional notes
CVE ID CVE-2015-5722
UCS Bug number #39544