Add CVE to bugs #69545, #69646 and #69667

author: Lior Kaplan <kaplanlior@gmail.com> 2015-06-18 16:56:06 +0300
committer: Lior Kaplan <kaplanlior@gmail.com> 2015-06-18 16:56:06 +0300
commit: 811816dc25032867c3489abb8a9089a986aee185 (patch)
tree: 47b72cec343d08783beeb3c950a0f1514fe97560
parent: 0f49c205f49f92c03cffa0f0751fc15d078727d6 (diff)
download: php-git-811816dc25032867c3489abb8a9089a986aee185.tar.gz
1 files changed, 4 insertions, 4 deletions
diff --git a/NEWS b/NEWS
index f62d1d7a9c..0fb888d69e 100644
--- a/NEWS
+++ b/NEWS
@@ -53,12 +53,12 @@ PHP                                                                        NEWS
   . Fixed POST data processing slowdown due to small input buffer size
     on Windows. (Jorge Oliveira, Anatol)
   . Fixed bug #69646 (OS command injection vulnerability in escapeshellarg).
-    (Anatol Belski)
+    (CVE-2015-4642) (Anatol Belski)
   . Fixed bug #69719 (Incorrect handling of paths with NULs). (Stas)
 
 - FTP
-  . Improved fix for bug #69545 (Integer overflow in ftp_genlist()
-    resulting in heap overflow). (Max Spelsberg)
+  . Improved fix for bug #69545 (Integer overflow in ftp_genlist() resulting in
+    heap overflow). (CVE-2015-4643) (Max Spelsberg)
 
 - GD:
   . Fixed bug #69479 (GD fails to build with newer libvpx). (Remi)
@@ -88,7 +88,7 @@ PHP                                                                        NEWS
     (Matteo Bernardini, Remi)
 
 - Postgres:
-  . Fixed bug #69667 (segfault in php_pgsql_meta_data). (Remi)
+  . Fixed bug #69667 (segfault in php_pgsql_meta_data). (CVE-2015-4644) (Remi)
 
 - Sqlite3:
   . Upgrade bundled sqlite to 3.8.10.2. (CVE-2015-3414, CVE-2015-3415,
author	Lior Kaplan <kaplanlior@gmail.com>	2015-06-18 16:56:06 +0300
committer	Lior Kaplan <kaplanlior@gmail.com>	2015-06-18 16:56:06 +0300
commit	811816dc25032867c3489abb8a9089a986aee185 (patch)
tree	47b72cec343d08783beeb3c950a0f1514fe97560
parent	0f49c205f49f92c03cffa0f0751fc15d078727d6 (diff)
download	php-git-811816dc25032867c3489abb8a9089a986aee185.tar.gz