CHANGES, release note

author Evan Hunt <each@isc.org>

Thu, 3 Jan 2019 19:04:41 +0000 (11:04 -0800)

committer Ondřej Surý <ondrej@sury.org>

Thu, 25 Apr 2019 14:32:32 +0000 (16:32 +0200)
author Evan Hunt <each@isc.org>
Thu, 3 Jan 2019 19:04:41 +0000 (11:04 -0800)
committer Ondřej Surý <ondrej@sury.org>
Thu, 25 Apr 2019 14:32:32 +0000 (16:32 +0200)
diff --git a/CHANGES b/CHANGES

index ae65fd45c80c7d37c754c22003e55034ea3f4822..ce73210f1e88fe1e553f9e2465228643334d673f 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -53,7 +53,9 @@
  
  5201.  [bug]           Fix a possible deadlock in RPZ update code. [GL #973]
  
-5200.  [placeholder]
+5200.  [security]      tcp-clients settings could be exceeded in some cases,
+                       which could lead to exhaustion of file descriptors.
+                       (CVE-2018-5743) [GL #615]
  
  5199.  [security]      In certain configurations, named could crash
                         if nxdomain-redirect was in use and a redirected
diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml

index ff01aaa38f82fe6b17e741cb4466bcccb5d07877..18a9cc9c386dce3e9fc8ca5db73a7f8f3241ae6c 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -93,6 +93,13 @@
           cache. This flaw is disclosed in CVE-2019-6467. [GL #880]
         </para>
        </listitem>
+      <listitem>
+       <para>
+         The TCP client quota set using the <command>tcp-clients</command>
+         option could be exceeded in some cases. This could lead to
+         exhaustion of file descriptors. (CVE-2018-5743) [GL #615]
+       </para>
+      </listitem>
      </itemizedlist>
    </section>
author	Evan Hunt <each@isc.org>
	Thu, 3 Jan 2019 19:04:41 +0000 (11:04 -0800)
committer	Ondřej Surý <ondrej@sury.org>
	Thu, 25 Apr 2019 14:32:32 +0000 (16:32 +0200)
CHANGES		patch \| blob \| blame \| history
doc/arm/notes.xml		patch \| blob \| blame \| history