- add CVE #

author Pierre Joye <pajoye@php.net>

Tue, 20 Jul 2010 09:26:29 +0000 (09:26 +0000)

committer Pierre Joye <pajoye@php.net>

Tue, 20 Jul 2010 09:26:29 +0000 (09:26 +0000)
author Pierre Joye <pajoye@php.net>
Tue, 20 Jul 2010 09:26:29 +0000 (09:26 +0000)
committer Pierre Joye <pajoye@php.net>
Tue, 20 Jul 2010 09:26:29 +0000 (09:26 +0000)
diff --git a/NEWS b/NEWS

index a3ad74d291b261b7e67ffc9cdafe43945025649e..29aa720caec48acd5667012353ba156b91458e14 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -8,7 +8,7 @@ PHP                                                                        NEWS
  
  15 Jul 2010, PHP 5.3.3 RC3
  - Rewrote var_export() to use smart_str rather than output buffering, prevents
-  data disclosure if a fatal error occurs. (Scott)
+  data disclosure if a fatal error occurs (CVE-2010-2531). (Scott)
  
  - Fixed bug #52262 (json_decode() shows no errors on invalid UTF-8).
    (Scott)
author	Pierre Joye <pajoye@php.net>
	Tue, 20 Jul 2010 09:26:29 +0000 (09:26 +0000)
committer	Pierre Joye <pajoye@php.net>
	Tue, 20 Jul 2010 09:26:29 +0000 (09:26 +0000)