BIND 9.18.0 - A New Stable Branch

Today ISC is pleased to announce the release of BIND 9.18.0. This is the first stable release that contains support for DoT and DoH. This branch will be supported for 4 years, through the end of 2025. With this new branch, the BIND 9.11 branch is officially EOL. We will continue to issue security patches for 9.11 for the remainder of Q1 2022, but that will be the end of maintenance for 9.11.

This new release of BIND is available on our downloads page.

Significant work covered in the 9.18.0 branch includes:

  • Support for securing DNS traffic using Transport Layer Security (TLS). TLS is used by both DNS-over-TLS (DoT) and DNS-over-HTTPS (DoH).
  • Support for zone transfers over TLS (XFR-over-TLS, XoT) for both incoming and outgoing zone transfers.
  • The dig tool is now able to send DoT queries (+tls option).
  • Support for OpenSSL 3.0 APIs was added.

You can read more about this new edition of BIND in the release notes.

References

Recent Posts

What's New from ISC

BIND 9 Security Audit

In the aftermath of yesterday’s BIND announcement of seven new CVEs, one of them with a fairly wide impact, BIND users might be wondering why ISC publishes so many security vulnerabilities.

Read post