add CVEs

author: Stanislav Malyshev <stas@php.net> 2014-06-21 18:37:08 -0700
committer: Stanislav Malyshev <stas@php.net> 2014-06-21 18:37:08 -0700
commit: 300e0418a4b55cc745c262af8126d3aeb5f189e3 (patch)
tree: 72a32445e9ee046983c114329c5536fa8a81a06c
parent: 21525d041369484d49781b34a8333a78798806e4 (diff)
download: php-git-300e0418a4b55cc745c262af8126d3aeb5f189e3.tar.gz
1 files changed, 5 insertions, 5 deletions
diff --git a/NEWS b/NEWS
index a5eaabcd6b..ce9398e586 100644
--- a/NEWS
+++ b/NEWS
@@ -21,15 +21,15 @@ PHP                                                                        NEWS
 
 - Fileinfo:
   . Fixed bug #67326 (fileinfo: cdf_read_short_sector insufficient boundary 
-    check). 
+    check). (CVE-2014-0207) 
   . Fixed bug #67410 (fileinfo: mconvert incorrect handling of truncated pascal
-    string size). (Francisco Alonso, Jan Kaluza, Remi)
+    string size). (CVE-2014-3478) (Francisco Alonso, Jan Kaluza, Remi) 
   . Fixed bug #67411 (fileinfo: cdf_check_stream_offset insufficient boundary
-    check). (Francisco Alonso, Jan Kaluza, Remi)
+    check). (CVE-2014-3479) (Francisco Alonso, Jan Kaluza, Remi)
   . Fixed bug #67412 (fileinfo: cdf_count_chain insufficient boundary check).
-    (Francisco Alonso, Jan Kaluza, Remi)
+    (CVE-2014-3480) (Francisco Alonso, Jan Kaluza, Remi)
   . Fixed bug #67413 (fileinfo: cdf_read_property_info insufficient boundary
-    check). (Francisco Alonso, Jan Kaluza, Remi)
+    check). (CVE-2014-3487) (Francisco Alonso, Jan Kaluza, Remi)
 
 - Network:
   . Fixed bug #67432 (Fix potential segfault in dns_get_record()).
author	Stanislav Malyshev <stas@php.net>	2014-06-21 18:37:08 -0700
committer	Stanislav Malyshev <stas@php.net>	2014-06-21 18:37:08 -0700
commit	300e0418a4b55cc745c262af8126d3aeb5f189e3 (patch)
tree	72a32445e9ee046983c114329c5536fa8a81a06c
parent	21525d041369484d49781b34a8333a78798806e4 (diff)
download	php-git-300e0418a4b55cc745c262af8126d3aeb5f189e3.tar.gz