php 5.4: add CVE refs

author: Remi Collet <fedora@famillecollet.com> 2016-05-06 08:50:24 +0200
committer: Remi Collet <fedora@famillecollet.com> 2016-05-06 08:50:24 +0200
commit: 47446838b70413bf7cc52f145c523b56a80602b3 (patch)
tree: 9ff3664df534eb54c95e8122ed03768d772dece5 /php54.spec
parent: 493af60df179835f644a48a4c603c324eaec65da (diff)
1 files changed, 9 insertions, 8 deletions
diff --git a/php54.spec b/php54.spec
index 660d193..4e2fe94 100644
--- a/php54.spec
+++ b/php54.spec
@@ -1807,17 +1807,18 @@ fi
 
 %changelog
 * Tue Apr 26 2016 Remi Collet <remi@fedoraproject.org> 5.4.45-8
-- Fix #64938: libxml_disable_entity_loader setting is shared
-  between threads  CVE-2015-8866
+- Fix #64938: libxml_disable_entity_loader setting is shared between threads
+  CVE-2015-8866
 - Fix #71912: libgd signedness vulnerability
   CVE-2016-3074
-- Fix #72061: Out-of-bounds reads in zif_grapheme_stripos
-  with negative offset
-- Fix #72093: bcpowmod accepts negative scale and corrupts
-  _one_ definition
-- Fix #72094: Out of bounds heap read access in exif
-  header processing
+- Fix #72061: Out-of-bounds reads in zif_grapheme_stripos with negative offset
+  CVE-2016-4540 CVE-2016-4541
+- Fix #72093: bcpowmod accepts negative scale and corrupts _one_ definition
+  CVE-2016-4537 CVE-2016-4538
+- Fix #72094: Out of bounds heap read access in exif header processing
+  CVE-2016-4542 CVE-2016-4543 CVE-2016-4544
 - Fix #72099: xml_parse_into_struct segmentation fault
+  CVE-2016-4539
 
 * Tue Mar 29 2016 Remi Collet <remi@fedoraproject.org> 5.4.45-7
 - Fix #71860: Require valid paths for phar filenames
author	Remi Collet <fedora@famillecollet.com>	2016-05-06 08:50:24 +0200
committer	Remi Collet <fedora@famillecollet.com>	2016-05-06 08:50:24 +0200
commit	47446838b70413bf7cc52f145c523b56a80602b3 (patch)
tree	9ff3664df534eb54c95e8122ed03768d772dece5 /php54.spec
parent	493af60df179835f644a48a4c603c324eaec65da (diff)