Note on zlib patch merge.

author Martin Pool <mbp@samba.org>

Mon, 11 Mar 2002 05:52:22 +0000 (05:52 +0000)

committer Martin Pool <mbp@samba.org>

Mon, 11 Mar 2002 05:52:22 +0000 (05:52 +0000)
author Martin Pool <mbp@samba.org>
Mon, 11 Mar 2002 05:52:22 +0000 (05:52 +0000)
committer Martin Pool <mbp@samba.org>
Mon, 11 Mar 2002 05:52:22 +0000 (05:52 +0000)
diff --git a/NEWS b/NEWS

index 7fcb24e..c4a9f42 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -2,14 +2,15 @@ rsync 2.5.3 (not released yet)
  
    SECURITY FIXES:
  
-    * (CVE CAN-2002-0059)
-
      * Make sure that supplementary groups are removed from a server
        process after changing uid and gid. (Ethan Benson) (Debian bug
        #132272, CVE CAN-2002-0080)
  
    BUG FIXES:
  
+    * Fix zlib double-free bug.  (Owen Taylor, Mark J Cox) (CVE
+      CAN-2002-0059)
+
      * Fixed problem that in many cases caused the error message 
         unexpected read size of 0 in map_ptr
        and resulted in the wrong data being copied.
author	Martin Pool <mbp@samba.org>
	Mon, 11 Mar 2002 05:52:22 +0000 (05:52 +0000)
committer	Martin Pool <mbp@samba.org>
	Mon, 11 Mar 2002 05:52:22 +0000 (05:52 +0000)