From 0df29f5e23fd2f16181847db1fcf3a8b392d869a Mon Sep 17 00:00:00 2001
From: Simon Kelley <simon@thekelleys.org.uk>
Date: Thu, 16 Apr 2015 15:24:52 +0100
Subject: Note CVE-2015-3294

---
 CHANGELOG | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/CHANGELOG b/CHANGELOG
index 0619788..7f2b1e0 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -84,6 +84,9 @@ version 2.73
 
 	    Fix crash on receipt of certain malformed DNS requests.
 	    Thanks to Nick Sampanis for spotting the problem.
+	    Note that this is could allow the dnsmasq process's
+	    memory to be read by an attacker under certain
+	    circumstances, so it has a CVE, CVE-2015-3294 
 
             Fix crash in authoritative DNS code, if a .arpa zone 
 	    is declared as authoritative, and then a PTR query which
-- 
cgit v1.2.1