The open source BIND DNS software has been updated to patch a vulnerability that could lead to DDoS attacks.

"According to the relevant advisory, the server's domain validation code contains a flaw that can cause an NXDomain to be regarded as validated although it isn't," according to The H Security. "With the usual protective measures (random transaction IDs and random source ports) in place, however, the cache is not said to be open to manipulation. However, the prevention of DoS attacks is apparently compromised."

Click here to read the story at The H Security.