add CHANGES and release notes entries

author Mark Andrews <marka@isc.org>

Mon, 7 Jan 2019 00:22:01 +0000 (11:22 +1100)

committer Evan Hunt <each@isc.org>

Mon, 4 Feb 2019 23:11:32 +0000 (15:11 -0800)
author Mark Andrews <marka@isc.org>
Mon, 7 Jan 2019 00:22:01 +0000 (11:22 +1100)
committer Evan Hunt <each@isc.org>
Mon, 4 Feb 2019 23:11:32 +0000 (15:11 -0800)
diff --git a/CHANGES b/CHANGES

index d85d68730ac5fc1e4f58bdc58d35998dc81d98bb..96f86e0498a233002ab053c0db1c6f4df226b003 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,9 @@
+5141.  [security]      Zone transfer controls for writable DLZ zones were
+                       not effective as the allowzonexfr method was not being
+                       called for such zones. (CVE-2019-6465) [GL #790]
+
+       --- 9.12.3-P2 released (withdrawn) ---
+
  5118.  [security]      Named could crash if it is managing a key with
                         `managed-keys` and the authoritative zone is rolling
                         the key to an unsupported algorithm. (CVE-2018-5745)
diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml

index 170ccc578fabdfec061cd80b44f9ff67292d8092..958e8c0eabf2be6bb08597fe570323f4a71a407b 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -105,6 +105,14 @@
           [GL #772]
         </para>
        </listitem>
+      <listitem>
+       <para>
+         Zone transfer controls for writable DLZ zones were not
+         effective as the <command>allowzonexfr</command> method was
+         not being called for such zones. This flaw is disclosed in
+         CVE-2019-6465. [GL #790]
+       </para>
+      </listitem>
      </itemizedlist>
    </section>
author	Mark Andrews <marka@isc.org>
	Mon, 7 Jan 2019 00:22:01 +0000 (11:22 +1100)
committer	Evan Hunt <each@isc.org>
	Mon, 4 Feb 2019 23:11:32 +0000 (15:11 -0800)
CHANGES		patch \| blob \| blame \| history
doc/arm/notes.xml		patch \| blob \| blame \| history