From afa0ff0cbb75f4ce20d082eb3cb30ea6b2840920 Mon Sep 17 00:00:00 2001
From: Evan Hunt <each@isc.org>
Date: Mon, 23 Jan 2017 20:04:04 -0800
Subject: [PATCH] [master] expand relnote

---
 doc/arm/notes.xml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml
index 25bbfb99b3..001171810e 100644
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -67,9 +67,11 @@
     <itemizedlist>
       <listitem>
 	<para>
-	  Combining dns64 and rpz can result in dereferencing
-	  a NULL pointer (read).  This flaw is dislosed in CVE-2017-3135.
-	 [RT#44434]
+	  If a server is configured with a response policy zone (RPZ)
+	  that rewrites an answer with local data, and is also configured
+	  for DNS64 address mapping, a NULL pointer can be read
+	  triggering a server crash.  This flaw is disclosed in
+	  CVE-2017-3135. [RT #44434]
 	</para>
       </listitem>
       <listitem>