From e71fa03107bb7c11066420bf50c418cff1ca504f Mon Sep 17 00:00:00 2001
From: Stanislav Malyshev <stas@php.net>
Date: Sun, 15 Mar 2020 19:35:35 -0700
Subject: [PATCH] [ci skip] Update NEWS

---
 NEWS | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/NEWS b/NEWS
index 32db597c9b..835e7896ed 100644
--- a/NEWS
+++ b/NEWS
@@ -4,11 +4,21 @@ PHP                                                                        NEWS
 
 - Core:
   . Fixed bug #79364 (When copy empty array, next key is unspecified). (cmb)
+  . Fixed bug #79329 (get_headers() silently truncates after a null byte) 
+    (CVE-2020-7066) (cmb)
   . Fixed bug #78210 (Invalid pointer address). (cmb, Nikita)
 
 - CURL:
   . Fixed bug #79199 (curl_copy_handle() memory leak). (cmb)
 
+- EXIF:
+  . Fixed bug #79282 (Use-of-uninitialized-value in exif) (CVE-2020-7064)
+    (Nikita)
+
+- MBstring:
+  . Fixed bug #79371 (mb_strtolower (UTF-32LE): stack-buffer-overflow at 
+    php_unicode_tolower_full) (CVE-2020-7065) (cmb)
+
 - SimpleXML:
   . Fixed bug #61597 (SXE properties may lack attributes and content). (cmb)
 
-- 
2.40.0