Add Release Note for [GL #2950]

author Mark Andrews <marka@isc.org>

Mon, 28 Feb 2022 23:13:03 +0000 (10:13 +1100)

committer Michał Kępień <michal@isc.org>

Thu, 3 Mar 2022 12:33:00 +0000 (13:33 +0100)
author Mark Andrews <marka@isc.org>
Mon, 28 Feb 2022 23:13:03 +0000 (10:13 +1100)
committer Michał Kępień <michal@isc.org>
Thu, 3 Mar 2022 12:33:00 +0000 (13:33 +0100)
diff --git a/doc/arm/notes-9.11.37.xml b/doc/arm/notes-9.11.37.xml

index 488a2355a609c29cadb497c43c84d3fe29e0234b..fee6259bb7054d8873923e5736578416793cd77a 100644 (file)
--- a/doc/arm/notes-9.11.37.xml
+++ b/doc/arm/notes-9.11.37.xml
@@ -15,7 +15,15 @@
      <itemizedlist>
        <listitem>
          <para>
-          None.
+          The rules for acceptance of records into the cache have been tightened
+          to prevent the possibility of poisoning if forwarders send records
+          outside the configured bailiwick. (CVE-2021-25220)
+        </para>
+        <para>
+          ISC would like to thank Xiang Li, Baojun Liu, and Chaoyi Lu from
+          Network and Information Security Lab, Tsinghua University, and
+          Changgen Zou from Qi An Xin Group Corp. for bringing this
+          vulnerability to our attention. [GL #2950]
          </para>
        </listitem>
      </itemizedlist>
author	Mark Andrews <marka@isc.org>
	Mon, 28 Feb 2022 23:13:03 +0000 (10:13 +1100)
committer	Michał Kępień <michal@isc.org>
	Thu, 3 Mar 2022 12:33:00 +0000 (13:33 +0100)