Pre-announcement of BIND 9 security issues scheduled for disclosure 17 January 2024

[Suzanne Goldlust]

As part of our policy of pre-notification of upcoming security releases, we are writing to inform you that the January 2024 BIND 9 maintenance releases that will be published on Wednesday, 17 January, will contain patches for security vulnerabilities affecting stable BIND 9 release branches.

Further details about those vulnerabilities will be publicly disclosed at the time the releases are published.  It is our hope that this pre-announcement will aid BIND operators in preparing for that disclosure when it occurs.  If you have feedback or questions concerning this policy, please open a confidential GitLab issue at https://gitlab.isc.org/isc-projects/bind9/-/issues/new?issue[confidential]=true (preferred) or send an email to bind-security at isc.org.