This update provides bind 9.6ESVR4P1 which fixes a denial
of service vulnerability that can be triggered by very
large RRSIG RRsets in a negative response and crash named.
(CVE-2011-1910
<<a href=βhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1910β>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1910</a>
> )
It further provides a fix for a defect which may cause
queries for .com names to fail with validation errors when
DNSSEC records for the .com zone are initially inserted
into the root zone.
Please refer to
<a href=βhttps://www.isc.org/software/bind/new-features/9.6β>https://www.isc.org/software/bind/new-features/9.6</a>
<<a href=βhttps://www.isc.org/software/bind/new-features/9.6β>https://www.isc.org/software/bind/new-features/9.6</a>> for
more information on additional improvements and bug fixes.