CHANGES, release note

(cherry picked from commit ab5473007e91f011d003ff0ba5ab32fa0d56360c)
2026-06-09 10:32:13 -04:00 · 2019-03-12 15:21:10 -07:00 · 2019-03-12 15:21:10 -07:00 · 404be59527
commit 404be59527
parent 486a201149
2 changed files with 18 additions and 0 deletions
--- a/5
+++ b/5
@ -1,5 +1,10 @@
 5201.	[bug]		Fix a possible deadlock in RPZ update code. [GL #973]

+5199.	[security]	In certain configurations, named could crash
+			if nxdomain-redirect was in use and a redirected
+			query resulted in an NXDOMAIN from the cache.
+			(CVE-2019-6467) [GL #880]
+
 5198.	[bug]		If a fetch context was being shut down and, at the same
 			time, we returned from qname minimization, an INSIST
 			could be hit. [GL #966]
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@ -86,6 +86,19 @@
    </para>
  </section>

+  <section xml:id="relnotes_security"><info><title>Security Fixes</title></info>
+    <itemizedlist>
+      <listitem>
+        <para>
+	  In certain configurations, <command>named</command> could crash
+	  with an assertion failure if <command>nxdomain-redirect</command>
+	  was in use and a redirected query resulted in an NXDOMAIN from the
+	  cache. This flaw is disclosed in CVE-2019-6467. [GL #880]
+	</para>
+      </listitem>
+    </itemizedlist>
+  </section>
+
  <section xml:id="relnotes_features"><info><title>New Features</title></info>
    <itemizedlist>
      <listitem>