4322. [security] Duplicate EDNS COOKIE options in a response could

trigger an assertion failure. (CVE-2016-2088) [RT #41809]
2016-02-27 11:23:50 +11:00
parent 7f514657e2
commit 455c0848f8
5 changed files with 51 additions and 4 deletions
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -42,6 +42,13 @@
  <section xml:id="relnotes_security"><info><title>Security Fixes</title></info>

    <itemizedlist>
+      <listitem>
+	<para>
+	  Duplicate EDNS COOKIE options in a response could trigger
+	  an assertion failure. This flaw is disclosed in CVE-2016-2088.
+	  [RT #41809]
+	</para>
+      </listitem>
      <listitem>
 	<para>
 	  Insufficient testing when parsing a message allowed