ISC BIND 9.6-ESV-R4 is now available

Evan Hunt each at
Mon Mar 28 19:15:11 UTC 2011

	             BIND 9.6-ESV-R4 is now available.


   BIND 9.6-ESV-R4 is a maintenance release for BIND 9.6-ESV.  It is
   critical for those using DNSSEC validation, and strongly recommended

   There was a defect in 9.6-ESV-R3 which affects DNSSEC validating resolvers;
   it may cause queries for .com names to fail with validation errors when
   DNSSEC records for the .com zone are initially inserted into the root
   zone on Thursday, 31 March 2011.

   BIND 9.6.3, 9.7.3, and 9.8.0 are not affected by this defect.  9.6.2 and
   earlier versions are affected.

   BIND 9.6.3 has been repackaged with the name 9.6-ESV-R4.  Other than the
   version number, there are no functional differences between these versions.

   Upgrading to this release is urgent for operators of validating
   resolvers using BIND 9.6-ESV-R3 or earlier.  Non-validating resolvers
   and authoritative-only name servers are not affected.

   If you cannot upgrade your server software before 31 March 2011, you may
   wish to disable validation before the .com DNSSEC records are inserted
   into the root zone, and re-enable it again a few days after.

   If your server is not updated and becomes affected, "rndc flushname com"
   should correct the problem, as would restarting the server.
   For a detailed list of changes in this release, see the file CHANGES
   in the source, or


   The latest versions of BIND 9 software can always be found on our web
   site at There you will find additional
   information about each release, source code, and some pre-compiled
   versions for certain operating systems.


   Product support information is available on for paid support options.
   Free support is provided by our user community via a mailing
   list.  Information on all public email lists is available at

Evan Hunt -- each at
Internet Systems Consortium, Inc.

More information about the bind-announce mailing list