From 5ff3ed50f59b0d05d57aacd73870c6155140f2c8 Mon Sep 17 00:00:00 2001
From: Deepak Bhole <dbhole@redhat.com>
Date: Tue, 24 Jul 2012 11:44:50 -0400
Subject: CVE-2012-3422, RH840592: Potential read from an uninitialized memory
 location

Updated NEWS file with entry for CVE-2012-3423
---
 NEWS | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'NEWS')

diff --git a/NEWS b/NEWS
index 3bec098..2b69f00 100644
--- a/NEWS
+++ b/NEWS
@@ -8,6 +8,11 @@ GX  - http://bugs.gentoo.org/show_bug.cgi?id=X
 
 CVE-XXXX-YYYY: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=XXXX-YYYY
 
+New in release 1.4 (2012-XX-XX):
+* Security updates
+  - CVE-2012-3422, RH840592: Potential read from an uninitialized memory location
+  - CVE-2012-3423, RH841345: Incorrect handling of not 0-terminated strings
+
 New in release 1.3 (2012-XX-XX):
 * NetX
   - PR898: signed applications with big jnlp-file doesn't start (webstart affect like "frozen")
-- 
cgit v1.2.3