]> git.ipfire.org Git - thirdparty/bind9.git/commitdiff
Add release note entry for [GL #3216]
authorArtem Boldariev <artem@boldariev.com>
Thu, 24 Mar 2022 11:18:39 +0000 (13:18 +0200)
committerMichal Nowak <mnowak@isc.org>
Wed, 4 May 2022 17:39:18 +0000 (19:39 +0200)
doc/notes/notes-current.rst

index 660e0c5da009bcd1c311aa9088b59f511e7afd42..1ba00c8088f63681dd863d2598ff4c3373a2d4c9 100644 (file)
@@ -17,6 +17,14 @@ Security Fixes
 
 - None.
 
+- Previously, TLS socket objects could be destroyed prematurely, which
+  triggered assertion failures in :iscman:`named` instances serving
+  DNS-over-HTTPS (DoH) clients. This has been fixed.
+
+  ISC would like to thank Thomas Amgarten from arcade solutions ag for
+  bringing this vulnerability to our attention. (CVE-2022-1183)
+  :gl:`#3216`
+
 Known Issues
 ~~~~~~~~~~~~