* A denial of service flaw was found in the way BIND handled query
responses when both DNS64 and RPZ were used. A remote attacker could use
this flaw to make named exit unexpectedly with an assertion failure or a
null pointer dereference via a specially crafted DNS response.
(CVE-2017-3135)
--