This update for bind fixes the following issues: - CVE-2021-25214: Fixed a broken inbound incremental zone update which could have caused named to terminate unexpectedly . - CVE-2021-25215: Fixed an assertion check which could have failed while answering queries for DNAME records that required the DNAME to be processed to resolve itself . - CVE-2021-25216: Fixed an issue where policy negotiation can be targeted by a buffer overflow attack . - MD5 warning message using host, dig, nslookup with FIPS enabled .