From: Mark Andrews <marka@isc.org>
Date: Wed, 29 Mar 2017 15:56:33 +0000 (+1100)
Subject: add CVE-2017-3138
X-Git-Tag: v9.10.5rc3~2
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=2a5cd079791e0b2944e3bf316c9001c963889f70;p=thirdparty%2Fbind9.git

add CVE-2017-3138

(cherry picked from commit fe1ad70e510d2327f9decf5096915becbc2c95c0)
---

diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml
index 8f5fcd43abc..6d25dd48c73 100644
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -69,6 +69,12 @@
 
   <section xml:id="relnotes_security"><info><title>Security Fixes</title></info>
     <itemizedlist>
+      <listitem>
+	<para>
+	  'rndc ""' could trigger a assertion failure in named. This flaw
+	  is disclosed in (CVE-2017-3138). [RT #44924]
+	</para>
+      </listitem>
       <listitem>
 	<para>
 	  Some chaining (i.e., type CNAME or DNAME) responses to upstream