add CVE-2017-3138

author Mark Andrews <marka@isc.org>

Wed, 29 Mar 2017 15:56:33 +0000 (02:56 +1100)

committer Mark Andrews <marka@isc.org>

Wed, 29 Mar 2017 15:57:32 +0000 (02:57 +1100)
author Mark Andrews <marka@isc.org>
Wed, 29 Mar 2017 15:56:33 +0000 (02:56 +1100)
committer Mark Andrews <marka@isc.org>
Wed, 29 Mar 2017 15:57:32 +0000 (02:57 +1100)
diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml

index e68a049d92874517242a1929852a5637b24fca79..afd5606b89d94e03c27a03ce9032fddfc2ffc4e9 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -98,6 +98,12 @@
  
    <section xml:id="relnotes_security"><info><title>Security Fixes</title></info>
      <itemizedlist>
+      <listitem>
+       <para>
+         'rndc ""' could trigger a assertion failure in named. This flaw
+         is disclosed in (CVE-2017-3138). [RT #44924]
+       </para>
+      </listitem>
        <listitem>
         <para>
           Some chaining (i.e., type CNAME or DNAME) responses to upstream
author	Mark Andrews <marka@isc.org>
	Wed, 29 Mar 2017 15:56:33 +0000 (02:56 +1100)
committer	Mark Andrews <marka@isc.org>
	Wed, 29 Mar 2017 15:57:32 +0000 (02:57 +1100)