]> git.ipfire.org Git - thirdparty/bind9.git/commitdiff
Add CHANGES and release note for [GL #3112]
authorOndřej Surý <ondrej@isc.org>
Thu, 27 Jan 2022 07:44:53 +0000 (08:44 +0100)
committerMichał Kępień <michal@isc.org>
Wed, 16 Mar 2022 21:11:49 +0000 (22:11 +0100)
CHANGES
doc/notes/notes-current.rst

diff --git a/CHANGES b/CHANGES
index d05a7c67d04596499c42c4c0691e90d92be2c272..f95a93b0f80776da69b3026f47d2e51fa9728fb7 100644 (file)
--- a/CHANGES
+++ b/CHANGES
 
 5819.  [placeholder]
 
-5818.  [placeholder]
+5818.  [security]      A synchronous call to closehandle_cb() caused
+                       isc__nm_process_sock_buffer() to be called recursively,
+                       which in turn left TCP connections hanging in the
+                       CLOSE_WAIT state blocking indefinitely when
+                       out-of-order processing was disabled. (CVE-2022-0396)
+                       [GL #3112]
 
 5817.  [security]      The rules for acceptance of records into the cache
                        have been tightened to prevent the possibility of
index 0b45bfb281adfedeaaf860276bbdf540b47e7d43..55a69b56f646245862342b3d6e636a4f3c12d97d 100644 (file)
@@ -24,6 +24,11 @@ Security Fixes
   Changgen Zou from Qi An Xin Group Corp. for bringing this
   vulnerability to our attention. :gl:`#2950`
 
+- TCP connections with ``keep-response-order`` enabled could leave the
+  TCP sockets in the ``CLOSE_WAIT`` state when the client did not
+  properly shut down the connection. (CVE-2022-0396) :gl:`#3112`
+
+
 Known Issues
 ~~~~~~~~~~~~