From: Michał Kępień <michal@isc.org>
Date: Mon, 12 Apr 2021 13:00:03 +0000 (+0200)
Subject: Add CHANGES entry for [GL #2604]
X-Git-Tag: v9.11.32~9^2~6^2~1
X-Git-Url: http://git.ipfire.org/gitweb/?a=commitdiff_plain;h=948285ef1545a9cbe4348bdd6b7db6f487584d76;p=thirdparty%2Fbind9.git

Add CHANGES entry for [GL #2604]
---

diff --git a/CHANGES b/CHANGES
index 1c94dba3a76..a76859b84c5 100644
--- a/CHANGES
+++ b/CHANGES
@@ -5,6 +5,10 @@
 			configuration included the "tkey-gssapi-credential"
 			option. This has been fixed. [GL #2634]
 
+5617.	[security]	A specially crafted GSS-TSIG query could cause a buffer
+			overflow in the ISC implementation of SPNEGO.
+			(CVE-2021-25216) [GL #2604]
+
 5616.	[security]	named crashed when a DNAME record placed in the ANSWER
 			section during DNAME chasing turned out to be the final
 			answer to a client query. (CVE-2021-25215) [GL #2540]