[master] expand relnote

author Evan Hunt <each@isc.org>

Tue, 24 Jan 2017 04:04:04 +0000 (20:04 -0800)

committer Evan Hunt <each@isc.org>

Tue, 24 Jan 2017 04:04:04 +0000 (20:04 -0800)
author Evan Hunt <each@isc.org>
Tue, 24 Jan 2017 04:04:04 +0000 (20:04 -0800)
committer Evan Hunt <each@isc.org>
Tue, 24 Jan 2017 04:04:04 +0000 (20:04 -0800)
diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml

index 25bbfb99b314322656bfacb474be13e7aad71b92..001171810e577d34a19e41f9bdb586e89848c360 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -67,9 +67,11 @@
      <itemizedlist>
        <listitem>
         <para>
-         Combining dns64 and rpz can result in dereferencing
-         a NULL pointer (read).  This flaw is dislosed in CVE-2017-3135.
-        [RT#44434]
+         If a server is configured with a response policy zone (RPZ)
+         that rewrites an answer with local data, and is also configured
+         for DNS64 address mapping, a NULL pointer can be read
+         triggering a server crash.  This flaw is disclosed in
+         CVE-2017-3135. [RT #44434]
         </para>
        </listitem>
        <listitem>
author	Evan Hunt <each@isc.org>
	Tue, 24 Jan 2017 04:04:04 +0000 (20:04 -0800)
committer	Evan Hunt <each@isc.org>
	Tue, 24 Jan 2017 04:04:04 +0000 (20:04 -0800)