From: Yorgos Thessalonikefs <yorgos@nlnetlabs.nl>
Date: Tue, 20 Feb 2024 14:33:18 +0000 (+0100)
Subject: Changelog entry for #1010:
X-Git-Tag: release-1.19.3rc1~6
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=c6746499c10c13862d2053dd8bba23fa3fdab333;p=thirdparty%2Funbound.git

Changelog entry for #1010:
- Merge #1010: Mention REFUSED has the TC bit set with unmatched
  allow_cookie acl in the manpage. It also fixes the code to match the
  documentation about clients with a valid cookie that bypass the
  ratelimit regardless of the allow_cookie acl.
---

diff --git a/doc/Changelog b/doc/Changelog
index 2a6e98b10..88c9dbb33 100644
--- a/doc/Changelog
+++ b/doc/Changelog
@@ -1,3 +1,9 @@
+20 February 2024: Yorgos
+	- Merge #1010: Mention REFUSED has the TC bit set with unmatched
+	  allow_cookie acl in the manpage. It also fixes the code to match the
+	  documentation about clients with a valid cookie that bypass the
+	  ratelimit regardless of the allow_cookie acl.
+
 13 February 2024: Wouter
 	- Fix CVE-2023-50387, DNSSEC verification complexity can be exploited
 	  to exhaust CPU resources and stall DNS resolvers.