CHANGES, release note

author Evan Hunt <each@isc.org>

Thu, 3 Jan 2019 19:04:41 +0000 (11:04 -0800)

committer Evan Hunt <each@isc.org>

Sat, 6 Apr 2019 19:58:12 +0000 (12:58 -0700)
author Evan Hunt <each@isc.org>
Thu, 3 Jan 2019 19:04:41 +0000 (11:04 -0800)
committer Evan Hunt <each@isc.org>
Sat, 6 Apr 2019 19:58:12 +0000 (12:58 -0700)
diff --git a/CHANGES b/CHANGES

index c05579199753af32f323683397462eee17efbcbc..986f53f3f5dfa53b4c62793c7c6d9eca9a597235 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -1,5 +1,9 @@
  5201.  [bug]           Fix a possible deadlock in RPZ update code. [GL #973]
  
+5200.  [security]      tcp-clients settings could be exceeded in some cases,
+                       which could lead to exhaustion of file descriptors.
+                       (CVE-2018-5743) [GL #615]
+
  5199.  [security]      In certain configurations, named could crash
                         if nxdomain-redirect was in use and a redirected
                         query resulted in an NXDOMAIN from the cache.
diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml

index 225a68245e9b5b15e144e053dc069524b24a1cce..1d8747ae9511157e8b0399ff75f8412ac564bca5 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -96,6 +96,13 @@
           cache. This flaw is disclosed in CVE-2019-6467. [GL #880]
         </para>
        </listitem>
+      <listitem>
+       <para>
+         The TCP client quota set using the <command>tcp-clients</command>
+         option could be exceeded in some cases. This could lead to
+         exhaustion of file descriptors. (CVE-2018-5743) [GL #615]
+       </para>
+      </listitem>
      </itemizedlist>
    </section>
author	Evan Hunt <each@isc.org>
	Thu, 3 Jan 2019 19:04:41 +0000 (11:04 -0800)
committer	Evan Hunt <each@isc.org>
	Sat, 6 Apr 2019 19:58:12 +0000 (12:58 -0700)
CHANGES		patch \| blob \| blame \| history
doc/arm/notes.xml		patch \| blob \| blame \| history