add CVE-2017-3138

doc/arm/notes.xml

@@ -65,6 +65,12 @@
 
   <section xml:id="relnotes_security"><info><title>Security Fixes</title></info>
     <itemizedlist>
+      <listitem>
+	<para>
+	  'rndc ""' could trigger a assertion failure in named. This flaw
+	  is disclosed in (CVE-2017-3138). [RT #44924]
+	</para>
+      </listitem>
       <listitem>
 	<para>
 	  Some chaining (i.e., type CNAME or DNAME) responses to upstream