From: Mark Andrews <marka@isc.org>
Date: Tue, 31 Mar 2020 03:02:22 +0000 (+1100)
Subject: Add CHANGES entry
X-Git-Tag: v9.14.12~2^2~1
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=50405828436d8a61e253f1c6cd38271c7e097292;p=thirdparty%2Fbind9.git

Add CHANGES entry
---

diff --git a/CHANGES b/CHANGES
index 7819b610f54..66fcf12ea0a 100644
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,10 @@
+5395.	[security]	Further limit the number of queries that can be
+			triggered from a request.  Root and TLD servers
+			are no longer exempt from max-recursion-queries.
+			Fetches for missing name server address records
+			are limited to 4 for any domain. (CVE-2020-8616)
+			[GL #1388]
+
 5390.	[security]	Replaying a TSIG BADTIME response as a request could
 			trigger an assertion failure. (CVE-2020-8617)
 			[GL #1703]