From: Martin Pool <mbp@samba.org>
Date: Mon, 11 Mar 2002 05:52:22 +0000 (+0000)
Subject: Note on zlib patch merge.
X-Git-Url: https://mattmccutchen.net/rsync/rsync.git/commitdiff_plain/9e95e92bdff9c742e06ab237b5aef3d08603e94e

Note on zlib patch merge.
---

diff --git a/NEWS b/NEWS
index 7fcb24ef..c4a9f421 100644
--- a/NEWS
+++ b/NEWS
@@ -2,14 +2,15 @@ rsync 2.5.3 (not released yet)
 
   SECURITY FIXES:
 
-    * (CVE CAN-2002-0059)
-
     * Make sure that supplementary groups are removed from a server
       process after changing uid and gid. (Ethan Benson) (Debian bug
       #132272, CVE CAN-2002-0080)
 
   BUG FIXES:
 
+    * Fix zlib double-free bug.  (Owen Taylor, Mark J Cox) (CVE
+      CAN-2002-0059)
+
     * Fixed problem that in many cases caused the error message 
 	unexpected read size of 0 in map_ptr
       and resulted in the wrong data being copied.