diff --git a/doc/arm/Bv9ARM.ch09.html b/doc/arm/Bv9ARM.ch09.html
index f98591f7e6..4916ad9ffa 100644
--- a/doc/arm/Bv9ARM.ch09.html
+++ b/doc/arm/Bv9ARM.ch09.html
@@ -92,9 +92,11 @@
     <div class="itemizedlist"><ul class="itemizedlist" style="list-style-type: disc; ">
 <li class="listitem">
 	<p>
-	  Combining dns64 and rpz can result in dereferencing
-	  a NULL pointer (read).  This flaw is dislosed in CVE-2017-3135.
-	 [RT#44434]
+	  If a server is configured with a response policy zone (RPZ)
+	  that rewrites an answer with local data, and is also configured
+	  for DNS64 address mapping, a NULL pointer can be read
+	  triggering a server crash.  This flaw is disclosed in
+	  CVE-2017-3135. [RT #44434]
 	</p>
       </li>
 <li class="listitem">
diff --git a/doc/arm/notes.html b/doc/arm/notes.html
index 96e2dea24e..f3cd741ab1 100644
--- a/doc/arm/notes.html
+++ b/doc/arm/notes.html
@@ -54,9 +54,11 @@
     <div class="itemizedlist"><ul class="itemizedlist" style="list-style-type: disc; ">
 <li class="listitem">
 	<p>
-	  Combining dns64 and rpz can result in dereferencing
-	  a NULL pointer (read).  This flaw is dislosed in CVE-2017-3135.
-	 [RT#44434]
+	  If a server is configured with a response policy zone (RPZ)
+	  that rewrites an answer with local data, and is also configured
+	  for DNS64 address mapping, a NULL pointer can be read
+	  triggering a server crash.  This flaw is disclosed in
+	  CVE-2017-3135. [RT #44434]
 	</p>
       </li>
 <li class="listitem">