It contains two security fixes - CVE-2019-6467 and CVE-2018-5743

Release notes are available at:

WARNING: the dnssec-signzone binary deprecated the -r option (specifying the source of randomness).

This will currently (until DA fix that) BREAK the /usr/local/directadmin/scripts/ script and DirectAdmin will no longer renew DNSSec zones. The result is that they will expire and the affected domains will become unavailable for users who use DNS servers using DNSSec (for example Google DNS).