[v9_9] add CVE number

diff --git a/CHANGES b/CHANGES
index 1f9659725f8bc320037bf6c41928f2741ecd3514..597cd3cf512b5497612714454633f98f7d776a9f 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -15,7 +15,7 @@
 
 4170.  [security]      An incorrect boundary check in the OPENPGPKEY
                        rdatatype could trigger an assertion failure.
-                       [RT #40286]
+                       (CVE-2015-2986) [RT #40286]
 
 4169.  [test]          Added a 'wire_test -d' option to read input as
                        raw binary data, for use as a fuzzing harness.

diff --git a/README b/README
index 670183f8ce6064580039532d2a3fec083c7ceb3c..43c051911cf1d56bedf083d39ae54a9b5f4974b0 100644 (file)
--- a/README
+++ b/README
@@ -55,8 +55,8 @@ BIND 9.9.8
 
        BIND 9.9.8 is a maintenance release and addresses bugs
        found in BIND 9.9.7 and earlier, as well as the security
-       flaws described in CVE-2015-4620, CVE-2015-5477, and
-       CVE-2015-5722.
+       flaws described in CVE-2015-4620, CVE-2015-5477,
+       CVE-2015-5722, and CVE-2015-5986.
 
        It also makes the following new features available via a
        compile-time option:

diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml
index 49ce0428e225b1d8118383360343268f5494222e..ed65af36569b9ea37f37e2d7d9302b5d891321ca 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -41,7 +41,8 @@
       <listitem>
        <para>
          An incorrect boundary check in the OPENPGPKEY rdatatype
-         could trigger an assertion failure. [RT #40286]
+         could trigger an assertion failure. This flaw is disclosed
+         in CVE-2015-5986. [RT #40286]
        </para>
       </listitem>
       <listitem>