Add CVE IDs PHP 7.0.3

author: Lior Kaplan <kaplanlior@gmail.com> 2016-04-29 13:40:07 +0300
committer: Lior Kaplan <kaplanlior@gmail.com> 2016-04-29 13:40:07 +0300
commit: 8c215baae7843de3b6fe493fa56123ef7a48dd3c (patch)
tree: f13293f080d0a2c2039e96e98585914d7b7aee8a
parent: 8491a4e4383f5748428c53b1beca63856159685b (diff)
download: php-git-8c215baae7843de3b6fe493fa56123ef7a48dd3c.tar.gz
1 files changed, 6 insertions, 3 deletions
diff --git a/NEWS b/NEWS
index c8eb5693e3..4e8b977ad5 100644
--- a/NEWS
+++ b/NEWS
@@ -384,15 +384,18 @@ PHP                                                                        NEWS
   . Fixed bug #71475 (openssl_seal() uninitialized memory usage). (Stas)
 
 - PCRE:
-  . Upgraded pcrelib to 8.38.
+  . Upgraded pcrelib to 8.38. (CVE-2015-8383, CVE-2015-8386, CVE-2015-8387,
+    CVE-2015-8389, CVE-2015-8390, CVE-2015-8391, CVE-2015-8393, CVE-2015-8394)
 
 - Phar:
-  . Fixed bug #71354 (Heap corruption in tar/zip/phar parser). (Stas)
+  . Fixed bug #71354 (Heap corruption in tar/zip/phar parser). (CVE-2016-4342)
+    (Stas)
   . Fixed bug #71331 (Uninitialized pointer in phar_make_dirstream()).
     (CVE-2016-4343) (Stas)
   . Fixed bug #71391 (NULL Pointer Dereference in phar_tar_setupmetadata()).
     (Stas)
-  . Fixed bug #71488 (Stack overflow when decompressing tar archives). (Stas)
+  . Fixed bug #71488 (Stack overflow when decompressing tar archives).
+    (CVE-2016-2554) (Stas)
 
 - SOAP:
   . Fixed bug #70979 (crash with bad soap request). (Anatol)
author	Lior Kaplan <kaplanlior@gmail.com>	2016-04-29 13:40:07 +0300
committer	Lior Kaplan <kaplanlior@gmail.com>	2016-04-29 13:40:07 +0300
commit	8c215baae7843de3b6fe493fa56123ef7a48dd3c (patch)
tree	f13293f080d0a2c2039e96e98585914d7b7aee8a
parent	8491a4e4383f5748428c53b1beca63856159685b (diff)
download	php-git-8c215baae7843de3b6fe493fa56123ef7a48dd3c.tar.gz