From: Peter van Dijk <peter.van.dijk@netherlabs.nl>
Date: Fri, 15 Mar 2013 06:32:43 +0000 (+0000)
Subject: CVE reference
X-Git-Tag: rec-3.5-rc3~17
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=ad5efcbf5a8fd42c00bc69700b9bb4ae4fe2d94e;p=thirdparty%2Fpdns.git

CVE reference

git-svn-id: svn://svn.powerdns.com/pdns/trunk/pdns@3118 d19b8d6e-7fed-0310-83ef-9ca221ded41b
---

diff --git a/pdns/docs/pdns.xml b/pdns/docs/pdns.xml
index dcdcd37fd8..b7e5b08fdd 100644
--- a/pdns/docs/pdns.xml
+++ b/pdns/docs/pdns.xml
@@ -123,7 +123,7 @@
         </para>
       </note>
       <para>
-        This is a stability and bugfix update to 3.3/3.3.1. It contains
+        This is a stability, security and bugfix update to 3.3/3.3.1. It contains
         important fixes for slightly broken domain names, which your
         users expect to work anyhow.
       </para>
@@ -140,7 +140,9 @@
             <para>
               While Recursor 3.3 was not vulnerable to the specific attack noted in
               <ulink url="https://www.isc.org/files/imce/ghostdomain_camera.pdf">'Ghost Domain Names: Revoked Yet Still Resolvable'</ulink>,
-              further investigation showed that a variant of the attack could work. This was fixed in r3085.
+              further investigation showed that a variant of the attack could work. This was fixed in r3085. This should
+              also close the slightly bogus
+              <ulink url="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1193">CVE-2012-1193</ulink>.
             </para>
           </listitem>
           <listitem>