From: Christoph M. Becker <cmbecker69@gmx.de>
Date: Wed, 29 May 2019 07:27:23 +0000 (+0200)
Subject: Update NEWS for 7.3.6
X-Git-Tag: php-7.3.7RC1~23
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=f3cd6931ca3bf06b60c23e1ba24f6ef49d26e4e0;p=php

Update NEWS for 7.3.6
---

diff --git a/NEWS b/NEWS
index 21177f35c7..221ca505b6 100644
--- a/NEWS
+++ b/NEWS
@@ -29,18 +29,28 @@ PHP                                                                        NEWS
 - Zip:
   . Fixed bug #76345 (zip.h not found). (Michael Maroszek)
 
-16 May 2019, PHP 7.3.6RC1
+30 May 2019, PHP 7.3.6
 
 - cURL:
   . Implemented FR #72189 (Add missing CURL_VERSION_* constants). (Javier
     Spagnoletti)
 
+- EXIF:
+  . Fixed bug #77988 (heap-buffer-overflow on php_jpg_get16).
+    (CVE-2019-11040) (Stas)
+
 - FPM:
   . Fixed bug #77934 (php-fpm kill -USR2 not working). (Jakub Zelenka)
   . Fixed bug #77921 (static.php.net doesn't work anymore). (Peter Kokot)
 
 - GD:
   . Fixed bug #77943 (imageantialias($image, false); does not work). (cmb)
+  . Fixed bug #77973 (Uninitialized read in gdImageCreateFromXbm).
+    (CVE-2019-11038) (cmb)
+
+- Iconv:
+  . Fixed bug #78069 (Out-of-bounds read in iconv.c:_php_iconv_mime_decode()
+    due to integer overflow). (CVE-2019-11039). (maris dot adam)
 
 - JSON:
   . Fixed bug #77843 (Use after free with json serializer). (Nikita)
@@ -66,6 +76,9 @@ PHP                                                                        NEWS
   . Fixed bug #77024 (SplFileObject::__toString() may return array). (Craig
     Duncan)
 
+- SQLite:
+  . Fixed bug #77967 (Bypassing open_basedir restrictions via file uris). (Stas)
+
 - Standard:
   . Fixed bug #77931 (Warning for array_map mentions wrong type). (Nikita)
   . Fixed bug #78003 (strip_tags output change since PHP 7.3). (cmb)