Commit dcb6a0c4 authored by Ondřej Surý's avatar Ondřej Surý Committed by Michał Kępień
Browse files

Add CHANGES and release note for [GL #3112]

parent bfa4b9c1
Pipeline #98778 canceled with stages
in 2 minutes and 56 seconds
......@@ -39,7 +39,12 @@
 
5819. [placeholder]
 
5818. [placeholder]
5818. [security] A synchronous call to closehandle_cb() caused
isc__nm_process_sock_buffer() to be called recursively,
which in turn left TCP connections hanging in the
CLOSE_WAIT state blocking indefinitely when
out-of-order processing was disabled. (CVE-2022-0396)
[GL #3112]
 
5817. [security] The rules for acceptance of records into the cache
have been tightened to prevent the possibility of
......
......@@ -24,6 +24,11 @@ Security Fixes
Changgen Zou from Qi An Xin Group Corp. for bringing this
vulnerability to our attention. :gl:`#2950`
- TCP connections with ``keep-response-order`` enabled could leave the
TCP sockets in the ``CLOSE_WAIT`` state when the client did not
properly shut down the connection. (CVE-2022-0396) :gl:`#3112`
Known Issues
~~~~~~~~~~~~
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment