From cdf97b41dc727bc42a02ece9c8dee2f9061872c8 Mon Sep 17 00:00:00 2001
From: Mark Andrews <marka@isc.org>
Date: Fri, 9 Sep 2016 11:50:24 +1000
Subject: [PATCH] add CVE-2016-2776

(cherry picked from commit d4c8a622c0806b332880d7a9db69cf48a5260901)
---
 doc/arm/notes.xml | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/doc/arm/notes.xml b/doc/arm/notes.xml
index 325816ca7d..2fb8874543 100644
--- a/doc/arm/notes.xml
+++ b/doc/arm/notes.xml
@@ -76,6 +76,16 @@
 	</para>
       </listitem>
     </itemizedlist>
+
+    <itemizedlist>
+      <listitem>
+	<para>
+	  It was possible to trigger a assertion when rendering a
+	  message using a specially crafted request. This flaw is
+	  disclosed in CVE-2016-2776. [RT #43139]
+	</para>
+      </listitem>
+    </itemizedlist>
   </section>
 
   <section xml:id="relnotes_features"><info><title>New Features</title></info>