From: Lior Kaplan <kaplanlior@gmail.com>
Date: Fri, 29 Apr 2016 10:39:03 +0000 (+0300)
Subject: Add CVE IDs PHP 7.0.4
X-Git-Tag: php-7.0.7RC1~49
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=8491a4e4383f5748428c53b1beca63856159685b;p=php

Add CVE IDs PHP 7.0.4
---

diff --git a/NEWS b/NEWS
index d21d6ce3e6..c8eb5693e3 100644
--- a/NEWS
+++ b/NEWS
@@ -285,7 +285,8 @@ PHP                                                                        NEWS
     using count). (Nikita)
   . Fixed bug #71601 (finally block not executed after yield from). (Bob)
   . Fixed bug #71637 (Multiple Heap Overflow due to integer overflows in 
-    xml/filter_url/addcslashes). (Stas)
+    xml/filter_url/addcslashes). (CVE-2016-4344, CVE-2016-4345, CVE-2016-4346)
+    (Stas)
 
 - CLI server:
   . Fixed bug #71559 (Built-in HTTP server, we can download file in web by bug).
@@ -321,7 +322,7 @@ PHP                                                                        NEWS
 
 - SOAP:
   . Fixed bug #71610 (Type Confusion Vulnerability - SOAP /
-    make_http_soap_request()). (Stas)
+    make_http_soap_request()). (CVE-2016-3185) (Stas)
 
 - Standard:
   . Fixed bug #71603 (compact() maintains references in php7). (Laruence)