Security

Several vulnerabilities were discovered in BIND, a DNS server implementation, which may result in denial of service.

To mitigate CVE-2024-1737 two new configuration statements have been added to allow operators of secondary servers and recursive resolvers to set an upper bound on the growth of data in their zones or caches. Details can be found at: https://kb.isc.org/docs/rrset-limits-in-zones

https://security-tracker.debian.org/tracker/DSA-5734-1