Hi there Rob van der Putten wrote:
I filed a bug report; http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690569 Bind refers to this bug as 'RT #26200'
Bind fixed this in January. I don't expect Debian to implement this fix soon. It's probably best to disable DNSsec in your resolver. Regards, Rob