Errata overview
Errata ID 614
Date 2020-05-27
Source package bind9
Fixed in version 1:9.10.3.dfsg.P4-12.3+deb9u6A~
This update addresses the following issues:
* BIND does not sufficiently limit the number of fetches performed when
  processing referrals (CVE-2020-8616)
* A logic error in code which checks TSIG validity can be used to trigger an
  assertion failure in tsig.c (CVE-2020-8617)
Additional notes
CVE ID CVE-2020-8616
UCS Bug number #51347