add CHANGES and release note entries

author Mark Andrews <marka@isc.org>

Sun, 9 Dec 2018 22:13:05 +0000 (09:13 +1100)

committer Evan Hunt <each@isc.org>

Mon, 4 Feb 2019 23:08:48 +0000 (15:08 -0800)
author Mark Andrews <marka@isc.org>
Sun, 9 Dec 2018 22:13:05 +0000 (09:13 +1100)
committer Evan Hunt <each@isc.org>
Mon, 4 Feb 2019 23:08:48 +0000 (15:08 -0800)
diff --git a/CHANGES b/CHANGES

index 8c24ab1b6d99bc566eb63ee4c66406096d6e0978..d85d68730ac5fc1e4f58bdc58d35998dc81d98bb 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -3,6 +3,9 @@
                         the key to an unsupported algorithm. (CVE-2018-5745)
                         [GL #780]
  
+5110.  [security]      Named leaked memory if there were multiple Key Tag
+                       EDNS options present. (CVE-2018-5744) [GL #772]
+
         --- 9.12.3-P1 released ---
  
  5108.  [bug]           Named could fail to determine bottom of zone when
diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml

index ef9c8adb768ef52ad023a1fd8bb24ce0d02a2043..170ccc578fabdfec061cd80b44f9ff67292d8092 100644 (file)
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -96,6 +96,15 @@
           by BIND 9.  This flaw is disclosed in CVE-2018-5745. [GL #780]
         </para>
        </listitem>
+      <listitem>
+       <para>
+         <command>named</command> leaked memory when processing a
+         request with multiple Key Tag EDNS options present. ISC
+         would like to thank Toshifumi Sakaguchi for bringing this
+         to our attention.  This flaw is disclosed in CVE-2018-5744.
+         [GL #772]
+       </para>
+      </listitem>
      </itemizedlist>
    </section>
author	Mark Andrews <marka@isc.org>
	Sun, 9 Dec 2018 22:13:05 +0000 (09:13 +1100)
committer	Evan Hunt <each@isc.org>
	Mon, 4 Feb 2019 23:08:48 +0000 (15:08 -0800)
CHANGES		patch \| blob \| blame \| history
doc/arm/notes.xml		patch \| blob \| blame \| history