CHANGES, release note

author Evan Hunt <each@isc.org>

Fri, 6 Jul 2018 03:48:26 +0000 (20:48 -0700)

committer Evan Hunt <each@isc.org>

Wed, 8 Aug 2018 21:33:19 +0000 (14:33 -0700)
author Evan Hunt <each@isc.org>
Fri, 6 Jul 2018 03:48:26 +0000 (20:48 -0700)
committer Evan Hunt <each@isc.org>
Wed, 8 Aug 2018 21:33:19 +0000 (14:33 -0700)
diff --git a/CHANGES b/CHANGES

index f95ed642616d873bf4d4ea0dd8280be927dd26f3..791851b185f4936589cdff92703d6fa2404f0c39 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -30,7 +30,9 @@
  
  4998.  [test]          Make resolver and cacheclean tests more civilized.
  
-4997.  [placeholder]
+4997.  [security]      named could crash during recursive processing
+                       of DNAME records when "deny-answer-aliases" was
+                       in use. (CVE-2018-5740) [GL #387]
  
  4996.  [bug]           dig: Handle malformed +ednsopt option. [GL #403]
  
diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml

index 6f30ff9e682f7e10bd5dd2bcc706e1b4fafff3a2..8a1f647af5662c673a77f4baf26c19d3d63397eb 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -72,6 +72,13 @@
           remote queries. This flaw is disclosed in CVE-2018-5738. [GL #309]
         </para>
        </listitem>
+      <listitem>
+       <para>
+         <command>named</command> could crash during recursive processing
+         of DNAME records when <command>deny-answer-aliases</command> was
+         in use. This flaw is disclosed in CVE-2018-5740. [GL #387]
+       </para>
+      </listitem>
      </itemizedlist>
    </section>
author	Evan Hunt <each@isc.org>
	Fri, 6 Jul 2018 03:48:26 +0000 (20:48 -0700)
committer	Evan Hunt <each@isc.org>
	Wed, 8 Aug 2018 21:33:19 +0000 (14:33 -0700)
CHANGES		patch \| blob \| blame \| history
doc/arm/notes.xml		patch \| blob \| blame \| history