CVE-2012-3422, RH840592: Potential read from an uninitialized memory location

Updated NEWS file with entry for CVE-2012-3423
author: Deepak Bhole <[email protected]> 2012-07-24 11:44:50 -0400
committer: Deepak Bhole <[email protected]> 2012-07-24 11:44:50 -0400
commit: 5ff3ed50f59b0d05d57aacd73870c6155140f2c8 (patch)
tree: 5c86b4875cbda6772d87445bcda53fb78fab7722 /NEWS
parent: dc8c4dd32925423e802772e4259dae4808a83a41 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index 3bec098..2b69f00 100644
--- a/NEWS
+++ b/NEWS
@@ -8,6 +8,11 @@ GX  - http://bugs.gentoo.org/show_bug.cgi?id=X
 
 CVE-XXXX-YYYY: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=XXXX-YYYY
 
+New in release 1.4 (2012-XX-XX):
+* Security updates
+  - CVE-2012-3422, RH840592: Potential read from an uninitialized memory location
+  - CVE-2012-3423, RH841345: Incorrect handling of not 0-terminated strings
+
 New in release 1.3 (2012-XX-XX):
 * NetX
   - PR898: signed applications with big jnlp-file doesn't start (webstart affect like "frozen")
author	Deepak Bhole <[email protected]>	2012-07-24 11:44:50 -0400
committer	Deepak Bhole <[email protected]>	2012-07-24 11:44:50 -0400
commit	5ff3ed50f59b0d05d57aacd73870c6155140f2c8 (patch)
tree	5c86b4875cbda6772d87445bcda53fb78fab7722 /NEWS
parent	dc8c4dd32925423e802772e4259dae4808a83a41 (diff)