From: Lior Kaplan <kaplanlior@gmail.com>
Date: Thu, 18 Jun 2015 12:45:10 +0000 (+0300)
Subject: Add CVE to bugs #69545, #69646 and #69667
X-Git-Tag: php-5.5.27RC1~3^2~4
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=5f67caad54c95c6de322ff9ec6af8143085aa6dc;p=php

Add CVE to bugs #69545, #69646 and #69667
---

diff --git a/NEWS b/NEWS
index da342689c9..7f1bf5d732 100644
--- a/NEWS
+++ b/NEWS
@@ -6,9 +6,9 @@ PHP                                                                        NEWS
 
 - Core:
   . Imroved fix for bug #69545 (Integer overflow in ftp_genlist() resulting in
-    heap overflow). (Max Spelsberg)
+    heap overflow). (CVE-2015-4643) (Max Spelsberg)
   . Fixed bug #69646 (OS command injection vulnerability in escapeshellarg).
-    (Anatol Belski)
+    (CVE-2015-4642) (Anatol Belski)
   . Fixed bug #69719 (Incorrect handling of paths with NULs). (Stas)
 
 - Litespeed SAPI:
@@ -19,7 +19,7 @@ PHP                                                                        NEWS
     additional headers). (Yasuo)
 
 - Postgres:
-  . Fixed bug #69667 (segfault in php_pgsql_meta_data). (Remi)
+  . Fixed bug #69667 (segfault in php_pgsql_meta_data). (CVE-2015-4644) (Remi)
 
 - Sqlite3:
   . Upgrade bundled sqlite to 3.8.10.2. (CVE-2015-3414, CVE-2015-3415,