Add NEWS entry for bug #67730

author Lior Kaplan <kaplanlior@gmail.com>

Tue, 19 Aug 2014 22:34:57 +0000 (01:34 +0300)

committer Lior Kaplan <kaplanlior@gmail.com>

Tue, 19 Aug 2014 22:34:57 +0000 (01:34 +0300)
author Lior Kaplan <kaplanlior@gmail.com>
Tue, 19 Aug 2014 22:34:57 +0000 (01:34 +0300)
committer Lior Kaplan <kaplanlior@gmail.com>
Tue, 19 Aug 2014 22:34:57 +0000 (01:34 +0300)
diff --git a/NEWS b/NEWS

index ea33c44ab37b9f2f75e9c9969e387275d9789c20..d38f3c2cfa75371f3d61f65e5947f6e019eff954 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -7,6 +7,8 @@ PHP                                                                        NEWS
  
  - GD
    . Made fontFetch's path parser thread-safe. (Sara)
+  . Fixed bug #67730 (Null byte injection possible with imagexxx functions).
+    (CVE-2014-5120) (Ryan Mauger)
  
  14 Aug 2014, PHP 5.6.0 Release Candidate 4
author	Lior Kaplan <kaplanlior@gmail.com>
	Tue, 19 Aug 2014 22:34:57 +0000 (01:34 +0300)
committer	Lior Kaplan <kaplanlior@gmail.com>
	Tue, 19 Aug 2014 22:34:57 +0000 (01:34 +0300)