<div dir="auto">FYI</div><div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">---------- Mensaje reenviado ---------<br>Fecha: El mar, jul 23, 2024 a la(s) 10:31<br>Asunto: New BIND releases are available: 9.18.28, 9.20.0<br><br></div><br><div style="line-break:after-white-space"><div>BIND users-</div><div><br></div><div>Our July 2024 maintenance release of BIND 9.18, as well as the new 9.20.0 stable branch, are available and can be downloaded from the ISC software download page, <a href="https://www.isc.org/download" target="_blank">https://www.isc.org/download</a>.</div><div><br></div><div>In addition to bug fixes and feature improvements, these releases also contain fixes for security vulnerabilities (CVE-2024-0760, CVE-2024-1737, CVE-2024-1975, CVE-2024-4076), about which more information is provided in the following Security Advisories:</div><div><br></div><div>    <a href="https://kb.isc.org/docs/cve-2024-0760" target="_blank">https://kb.isc.org/docs/cve-2024-0760</a></div><div>    <a href="https://kb.isc.org/docs/cve-2024-1737" target="_blank">https://kb.isc.org/docs/cve-2024-1737</a></div><div>    <a href="https://kb.isc.org/docs/cve-2024-1975" target="_blank">https://kb.isc.org/docs/cve-2024-1975</a></div><div>    <a href="https://kb.isc.org/docs/cve-2024-4076" target="_blank">https://kb.isc.org/docs/cve-2024-4076</a></div><div><br></div><div>A summary of significant changes in the new releases can be found in their release notes:</div><div><br></div><div>  - Current supported stable branches:</div><div><br></div><div>    9.18.28 - <a href="https://downloads.isc.org/isc/bind9/9.18.28/doc/arm/html/notes.html" target="_blank">https://downloads.isc.org/isc/bind9/9.18.28/doc/arm/html/notes.html</a></div><div>    9.20.0  - <a href="https://downloads.isc.org/isc/bind9/9.20.0/doc/arm/html/notes.html" target="_blank">https://downloads.isc.org/isc/bind9/9.20.0/doc/arm/html/notes.html</a></div><div><br></div><div>We also have a nice blog post from Ondřej Surý on the 9.20.0 release, including performance testing results (<a href="https://www.isc.org/blogs/2024-bind920/" target="_blank">https://www.isc.org/blogs/2024-bind920/</a>).</div><div><br></div><div>---</div><div>Please Note:</div><div><br></div><div><p style="margin:0px;font-style:normal;font-variant-caps:normal;font-stretch:normal;line-height:normal;font-family:"Helvetica Neue";font-size-adjust:none;font-kerning:auto;font-variant-alternates:normal;font-variant-ligatures:normal;font-variant-numeric:normal;font-variant-east-asian:normal;font-feature-settings:normal">To create an effective mitigation for CVE-2024-1737 we have introduced two new configurable limits that prevent the loading (into zones or into cache) of DNS resource records (RRs) that exceed them. We therefore recommend reading this KB article,</p><p style="margin:0px;font-style:normal;font-variant-caps:normal;font-stretch:normal;line-height:normal;font-family:"Helvetica Neue";font-size-adjust:none;font-kerning:auto;font-variant-alternates:normal;font-variant-ligatures:normal;font-variant-numeric:normal;font-variant-east-asian:normal;font-feature-settings:normal"><a href="https://kb.isc.org/docs/rrset-limits-in-zones" target="_blank">https://kb.isc.org/docs/rrset-limits-in-zones</a>, in case you need to change the defaults to suit your specific operational environment.</p><p style="margin:0px;font-style:normal;font-variant-caps:normal;font-stretch:normal;font-size:13px;line-height:normal;font-family:"Helvetica Neue";font-size-adjust:none;font-kerning:auto;font-variant-alternates:normal;font-variant-ligatures:normal;font-variant-numeric:normal;font-variant-east-asian:normal;font-feature-settings:normal"><br></p></div><div>We recommend that users planning to upgrade from the EOL 9.16 branch read the following document first:</div><div><br></div><div>    <a href="https://kb.isc.org/docs/changes-to-be-aware-of-when-moving-from-bind-916-to-918" target="_blank">https://kb.isc.org/docs/changes-to-be-aware-of-when-moving-from-bind-916-to-918</a></div></div><div style="line-break:after-white-space"><div><br></div></div>-- <br><br>
</div></div>