Debian Linux Security Advisory 3904-1 - ClA(c)ment Berthaux from Synaktiv discovered two vulnerabilities in BIND, a DNS server implementation. They allow an attacker to bypass TSIG authentication by sending crafted DNS packets to a server.
e68501e7faceaa57c1986d8bb4e0bb5e463c44ffc517d95422101b0a852c6a77