BIND 9.6.2-P1 is now available. BIND 9.6.2-P1 is a recommended patch for BIND 9.6.2. It addresses excessive query traffic generated when there is a break in the DNSSEC trust chain as a result of a configuration error. It is recommended for anyone using DNSSEC validation and BIND 9.6.x. Bugs should be reported to bind9-bugs@isc.org. BIND 9.6.2-P1 can be downloaded from: ftp://ftp.isc.org/isc/bind9/9.6.2-P1/bind-9.6.2-P1.tar.gz PGP signatures of the distribution are at: ftp://ftp.isc.org/isc/bind9/9.6.2-P1/bind-9.6.2-P1.tar.gz.asc ftp://ftp.isc.org/isc/bind9/9.6.2-P1/bind-9.6.2-P1.tar.gz.sha256.asc ftp://ftp.isc.org/isc/bind9/9.6.2-P1/bind-9.6.2-P1.tar.gz.sha512.asc The signatures were generated with the ISC public key, which is available at https://www.isc.org/about/openpgp A binary kit for Windows XP, Windows 2003 and Windows 2008 is at: ftp://ftp.isc.org/isc/bind9/9.6.2-P1/BIND9.6.2-P1.zip ftp://ftp.isc.org/isc/bind9/9.6.2-P1/BIND9.6.2-P1.debug.zip PGP signatures of the binary kit are at: ftp://ftp.isc.org/isc/bind9/9.6.2-P1/BIND9.6.2-P1.zip.asc ftp://ftp.isc.org/isc/bind9/9.6.2-P1/BIND9.6.2-P1.zip.sha256.asc ftp://ftp.isc.org/isc/bind9/9.6.2-P1/BIND9.6.2-P1.zip.sha512.asc ftp://ftp.isc.org/isc/bind9/9.6.2-P1/BIND9.6.2-P1.debug.zip.asc ftp://ftp.isc.org/isc/bind9/9.6.2-P1/BIND9.6.2-P1.debug.zip.sha256.asc ftp://ftp.isc.org/isc/bind9/9.6.2-P1/BIND9.6.2-P1.debug.zip.sha512.asc Changes since 9.6.2: --- 9.6.2-P1 released --- 2852. [bug] Handle broken DNSSEC trust chains better. [RT #15619] --- 9.6.2 released ---