ISC BIND 9.6-ESV-R4 is now available
each at isc.org
Mon Mar 28 19:15:11 UTC 2011
BIND 9.6-ESV-R4 is now available.
BIND 9.6-ESV-R4 is a maintenance release for BIND 9.6-ESV. It is
critical for those using DNSSEC validation, and strongly recommended
There was a defect in 9.6-ESV-R3 which affects DNSSEC validating resolvers;
it may cause queries for .com names to fail with validation errors when
DNSSEC records for the .com zone are initially inserted into the root
zone on Thursday, 31 March 2011.
BIND 9.6.3, 9.7.3, and 9.8.0 are not affected by this defect. 9.6.2 and
earlier versions are affected.
BIND 9.6.3 has been repackaged with the name 9.6-ESV-R4. Other than the
version number, there are no functional differences between these versions.
Upgrading to this release is urgent for operators of validating
resolvers using BIND 9.6-ESV-R3 or earlier. Non-validating resolvers
and authoritative-only name servers are not affected.
If you cannot upgrade your server software before 31 March 2011, you may
wish to disable validation before the .com DNSSEC records are inserted
into the root zone, and re-enable it again a few days after.
If your server is not updated and becomes affected, "rndc flushname com"
should correct the problem, as would restarting the server.
For a detailed list of changes in this release, see the file CHANGES
in the source, or ftp://ftp.isc.org/isc/bind9/9.6-ESV-R4/CHANGES
The latest versions of BIND 9 software can always be found on our web
site at http://www.isc.org/downloads. There you will find additional
information about each release, source code, and some pre-compiled
versions for certain operating systems.
Product support information is available on
http://www.isc.org/services/support for paid support options.
Free support is provided by our user community via a mailing
list. Information on all public email lists is available at
Evan Hunt -- each at isc.org
Internet Systems Consortium, Inc.
More information about the bind-announce