A vulnerability has been found in ISC BIND up to 9.21.21 and classified as problematic . Affected by this issue is some unknown functionality of the component GSS-API Token Handler . The manipulation leads to missing reference to active allocated resource. This vulnerability is documented as CVE-2026-3039 . The attack can be initiated remotely. There is not any exploit available. The affected component should be upgraded.