Add CHANGES and release note for [GL #3112]

diff --git a/CHANGES b/CHANGES
index 6b1f0662917ff1433f888bca20d6da0b0560241a..4830028eb0a7a3f2ad45e985f780ae3413a24adc 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -1,3 +1,10 @@
+5818.  [security]      A synchronous call to closehandle_cb() caused
+                       isc__nm_process_sock_buffer() to be called recursively,
+                       which in turn left TCP connections hanging in the
+                       CLOSE_WAIT state blocking indefinitely when
+                       out-of-order processing was disabled. (CVE-2022-0396)
+                       [GL #3112]
+
 5817.  [security]      The rules for acceptance of records into the cache
                        have been tightened to prevent the possibility of
                        poisoning if forwarders send records outside

diff --git a/doc/notes/notes-current.rst b/doc/notes/notes-current.rst
index 3b0f2602fa7205a76e7674f893bfb02eb09bad39..96fbb48da8229fcb638083a5ba924abadb39c0f7 100644 (file)
--- a/doc/notes/notes-current.rst
+++ b/doc/notes/notes-current.rst
@@ -24,6 +24,11 @@ Security Fixes
   Changgen Zou from Qi An Xin Group Corp. for bringing this
   vulnerability to our attention. :gl:`#2950`
 
+- TCP connections with ``keep-response-order`` enabled could leave the
+  TCP sockets in the ``CLOSE_WAIT`` state when the client did not
+  properly shut down the connection. (CVE-2022-0396) :gl:`#3112`
+
+
 Known Issues
 ~~~~~~~~~~~~