add CHANGES and release note entries

author Mark Andrews <marka@isc.org>

Sun, 9 Dec 2018 22:13:05 +0000 (09:13 +1100)

committer Evan Hunt <each@isc.org>

Thu, 21 Feb 2019 01:45:49 +0000 (17:45 -0800)
author Mark Andrews <marka@isc.org>
Sun, 9 Dec 2018 22:13:05 +0000 (09:13 +1100)
committer Evan Hunt <each@isc.org>
Thu, 21 Feb 2019 01:45:49 +0000 (17:45 -0800)
diff --git a/CHANGES b/CHANGES

index 790d28111d44505edeeb23197deca7ac4f2d358b..2f43c993ccf2ec1b10127a37bb66b7e40f22e3a7 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -182,7 +182,8 @@
  5111.  [bug]           Occluded DNSKEY records could make it into the
                         delegating NSEC/NSEC3 bitmap. [GL #742]
  
-5110.  [placeholder]
+5110.  [security]      Named leaked memory if there were multiple Key Tag
+                       EDNS options present. (CVE-2018-5744) [GL #772]
  
  5109.  [cleanup]       Remove support for RSAMD5 algorithm. [GL #628]
  
diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml

index e7ebbd0fb2ea3c97541540f9a53efa06ad1cffb3..79256ea5c198cf6866ee18fb3a52ae62f034d0e4 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -148,6 +148,15 @@
           by BIND 9.  This flaw is disclosed in CVE-2018-5745. [GL #780]
         </para>
        </listitem>
+      <listitem>
+       <para>
+         <command>named</command> leaked memory when processing a
+         request with multiple Key Tag EDNS options present. ISC
+         would like to thank Toshifumi Sakaguchi for bringing this
+         to our attention.  This flaw is disclosed in CVE-2018-5744.
+         [GL #772]
+       </para>
+      </listitem>
      </itemizedlist>
    </section>
author	Mark Andrews <marka@isc.org>
	Sun, 9 Dec 2018 22:13:05 +0000 (09:13 +1100)
committer	Evan Hunt <each@isc.org>
	Thu, 21 Feb 2019 01:45:49 +0000 (17:45 -0800)
CHANGES		patch \| blob \| blame \| history
doc/arm/notes.xml		patch \| blob \| blame \| history