Bump version to 2.5.3pre3.

[rsync/rsync.git] / NEWS

diff --git a/NEWS b/NEWS
index 8e76d34..b90a9c3 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -2,8 +2,11 @@ rsync 2.5.3 (not released yet)
 
   SECURITY FIXES:
 
+    * (CVE CAN-2002-0059)
+
     * Make sure that supplementary groups are removed from a server
-      process after changing uid and gid. (Ethan Benson)
+      process after changing uid and gid. (Ethan Benson) (Debian bug
+      #132272, CVE CAN-2002-0080)
 
   BUG FIXES: