reorder

diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml
index 0911e3c2d82723550923624a07353107f4cb66f8..d0ef0777075a1c5d5d23340c1dd34e4d380367a4 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -53,6 +53,20 @@
   <sect2 id="relnotes_security">
     <title>Security Fixes</title>
     <itemizedlist>
+      <listitem>
+       <para>
+         The resolver could abort with an assertion failure due to
+         improper DNAME handling when parsing fetch reply
+         messages. This flaw is disclosed in CVE-2016-1286. [RT #41753]
+       </para>
+      </listitem>
+      <listitem>
+       <para>
+         Malformed control messages can trigger assertions in named
+         and rndc. This flaw is disclosed in CVE-2016-1285. [RT
+         #41666]
+       </para>
+      </listitem>
       <listitem>
        <para>
          Specific APL data could trigger an INSIST.  This flaw
@@ -81,20 +95,6 @@
          lookup.  This flaw is disclosed in CVE-2015-8461. [RT#40945]
        </para>
       </listitem>
-      <listitem>
-       <para>
-         Malformed control messages can trigger assertions in named
-         and rndc. This flaw is disclosed in CVE-2016-1285. [RT
-         #41666]
-       </para>
-      </listitem>
-      <listitem>
-       <para>
-         The resolver could abort with an assertion failure due to
-         improper DNAME handling when parsing fetch reply
-         messages. This flaw is disclosed in CVE-2016-1286. [RT #41753]
-       </para>
-      </listitem>
     </itemizedlist>
   </sect2>
   <sect2 id="relnotes_features">