From: Mark Andrews <marka@isc.org>
Date: Fri, 9 Sep 2016 02:01:14 +0000 (+1000)
Subject: add CVE-2016-2776
X-Git-Tag: v9.9.9-P3~3
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=19ddeca79b322bfd2a4a49ec2f438061d4487038;p=thirdparty%2Fbind9.git

add CVE-2016-2776
---

diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml
index 78ec02d6b10..72cebb286a7 100644
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -23,6 +23,10 @@
     <para>
       This document summarizes changes since BIND 9.9.9:
     </para>
+    <para>
+      BIND 9.10.9-P3 addresses the security issue described in
+      CVE-2016-2776.
+    </para>
     <para>
       BIND 9.9.9-P2 addresses the security issue described in
       CVE-2016-2775.
@@ -49,11 +53,18 @@
     <itemizedlist>
       <listitem>
 	<para>
-	  getrrsetbyname with a non absolute name could trigger an
-	  infinite recursion bug in lwresd and named with lwres
-	  configured if when combined with a search list entry the
-	  resulting name is too long.  This flaw is disclosed in
-	  CVE-2016-2775. [RT #42694]
+	  It was possible to trigger a assertion when rendering a
+	  message using a specially crafted request. This flaw is
+	  disclosed in CVE-2016-2776. [RT #43139]
+	</para>
+      </listitem>
+      <listitem>
+	<para>
+	 getrrsetbyname with a non absolute name could trigger an
+	 infinite recursion bug in lwresd and named with lwres
+	 configured if when combined with a search list entry the
+	 resulting name is too long.  This flaw is disclosed in
+	 CVE-2016-2775. [RT #42694]
 	</para>
       </listitem>
     </itemizedlist>