Commit efe31ac2 authored by Ondřej Surý's avatar Ondřej Surý Committed by Michał Kępień
Browse files

Add CHANGES and release note for GL #2037

parent 8d807cc2
5480. [security] When BIND 9 was compiled with native PKCS#11 support, it
was possible to trigger an assertion failure in code
determining the number of bits in the PKCS#11 RSA public
key with a specially crafted packet. (CVE-2020-8623)
[GL #2037]
5476. [security] It was possible to trigger an assertion failure when
verifying the response to a TSIG-signed request.
(CVE-2020-8622) [GL #2028]
......
......@@ -24,6 +24,18 @@
of Oracle for bringing this vulnerability to our attention. [GL #2028]
</para>
</listitem>
<listitem>
<para>
When BIND 9 was compiled with native PKCS#11 support, it was possible
to trigger an assertion failure in code determining the number of bits
in the PKCS#11 RSA public key with a specially crafted packet. This
was disclosed in CVE-2020-8623.
</para>
<para>
ISC would like to thank Lyu Chiy for bringing this vulnerability to
our attention. [GL #2037]
</para>
</listitem>
</itemizedlist>
</section>
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment