From: Mark Andrews Date: Fri, 28 Oct 2022 00:31:19 +0000 (+1100) Subject: Add release note for [GL #3622] X-Git-Tag: v9.19.9~4^2 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=42c42be9a997a30dcf83c8a77a2f57811757a72d;p=thirdparty%2Fbind9.git Add release note for [GL #3622] --- diff --git a/doc/notes/notes-current.rst b/doc/notes/notes-current.rst index 470a7443f6f..53f5cd4533e 100644 --- a/doc/notes/notes-current.rst +++ b/doc/notes/notes-current.rst @@ -24,6 +24,14 @@ Security Fixes ISC would like to thank Rob Schulhof from Infoblox for bringing this vulnerability to our attention. :gl:`#3523` +- :iscman:`named` could crash with an assertion failure when an RRSIG + query was received and :any:`stale-answer-client-timeout` was set to a + non-zero value. This has been fixed. (CVE-2022-3736) + + ISC would like to thank Borja Marcos from Sarenet (with assistance by + Iratxe Niño from Fundación Sarenet) for bringing this vulnerability to + our attention. :gl:`#3622` + New Features ~~~~~~~~~~~~