From: Mark Andrews <marka@isc.org>
Date: Wed, 25 Sep 2019 01:37:08 +0000 (+1000)
Subject: add CHANGES
X-Git-Tag: v9.14.7~2^2~1
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=2ee9a6ee4e30a87b4e9a701881fa5b006b4fb5e2;p=thirdparty%2Fbind9.git

add CHANGES

(cherry picked from commit 21553af7cc17ab4732ea768a70c285c240296d25)
---

diff --git a/CHANGES b/CHANGES
index 678df48ee27..e9c8fe1025f 100644
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,7 @@
+5298.	[security]	Named could assert if a forwarder returned a
+			referral, rather than resolving the query, when QNAME
+			minimization was enabled. (CVE-2019-6476) [GL #1051]
+
 5297.	[bug]		Check whether a previous QNAME minimization fetch
 			is still running before starting a new one; return
 			SERVFAIL and log an error if so. [GL #1191]
@@ -135,7 +139,7 @@
 			code in a high-load cold-cache resolver scenario.
 			[GL #943]
 
-5242.	[bug]		In relaxed qname minimizatiom mode, fall back to
+5242.	[bug]		In relaxed qname minimization mode, fall back to
 			normal resolution when encountering a lame
 			delegation, and use _.domain/A queries rather
 			than domain/NS. [GL #1055]