Launchpad.net

CVE 2016-6173

NSD before 4.1.11 allows remote DNS master servers to cause a denial of service (/tmp disk consumption and slave server crash) via a zone transfer with unlimited data.

See the CVE page on Mitre.org for more details.