From: Evan Hunt Date: Tue, 24 Jan 2017 04:04:04 +0000 (-0800) Subject: [master] expand relnote X-Git-Tag: v9.12.0a1~510 X-Git-Url: http://git.ipfire.org/gitweb/index.cgi?a=commitdiff_plain;h=afa0ff0cbb75f4ce20d082eb3cb30ea6b2840920;p=thirdparty%2Fbind9.git [master] expand relnote --- diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml index 25bbfb99b31..001171810e5 100644 --- a/doc/arm/notes.xml +++ b/doc/arm/notes.xml @@ -67,9 +67,11 @@ - Combining dns64 and rpz can result in dereferencing - a NULL pointer (read). This flaw is dislosed in CVE-2017-3135. - [RT#44434] + If a server is configured with a response policy zone (RPZ) + that rewrites an answer with local data, and is also configured + for DNS64 address mapping, a NULL pointer can be read + triggering a server crash. This flaw is disclosed in + CVE-2017-3135. [RT #44434]