BIND, an implementation of the Domain Name System (DNS) protocols and one of the most widely used pieces of DNS software on the Internet, has reached version 9.9.4-P2.
According to the developers of BIND, this is the last production version release in the 9.9 branch of the software.
Highlights of BIND 9.9.4-P2:
• A Response Rate Limiting (RRL) functionality to reduce the effectiveness of DNS as an amplifier for reflected denial-of-service attacks by rate-limiting substantially-identical responses has been added; • The exploitation of a runtime_check, which can crash named when satisfying a recursive query for particular malformed zones, has been prevented; • The rndc status now also shows the build-id; • The OPT pseudo-record processing has been improved in order to make it easier to support new EDNS options; • The the “rndc” man page has been improved.
A complete list of changes can be found in the official announcement. Download BIND 9.9.4-P2 right now from Softpedia.