From: Benjamin Peterson <benjamin@python.org>
Date: Sat, 5 Dec 2015 08:17:57 +0000 (-0800)
Subject: add CVE and issue number
X-Git-Tag: v3.4.4rc1~5^2^2
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=5e621176c4ec3cbd5102b9ca7441695832544123;p=python

add CVE and issue number
---

diff --git a/Misc/NEWS b/Misc/NEWS
index b33c5a4169..0eb8153a2b 100644
--- a/Misc/NEWS
+++ b/Misc/NEWS
@@ -99,8 +99,9 @@ Library
 - Issue #21766: Prevent a security hole in CGIHTTPServer by URL unquoting paths
   before checking for a CGI script at that path.
 
-- Fix arbitrary memory access in JSONDecoder.raw_decode with a negative second
-  parameter. Bug reported by Guido Vranken.
+- Issue #21529 (CVE-2014-4616): Fix arbitrary memory access in
+  JSONDecoder.raw_decode with a negative second parameter. Bug reported by Guido
+  Vranken.
 
 - Issue #21082: In os.makedirs, do not set the process-wide umask. Note this
   changes behavior of makedirs when exist_ok=True.