buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and 9.10.x before 9.10.2-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) by creating a zone containing a malformed DNSSEC key and issuing a query for a name in that zone.
Exploitability
AV:NAC:LAu:NImpact
C:NI:NA:C7.8/AV:N/AC:L/Au:N/C:N/I:N/A:C