There has been a recent discovery that affects BIND DNS servers.
A nameserver can be locked up if it can be induced to load a specially crafted combination of resource records. CVE-2012-5166
To check your version, issue:
Affected BIND DNS server versions:
- 9.2.x -> 9.6.x
Upgrading to one of the following corrects the problem
You can also work around the issue by setting a view or global option and setting
Here’s an example screenshot of BIND9 configuration: