# HG changeset patch # User Andrew John Hughes # Date 1329134128 0 # Node ID a49670e226cc5e165da2d63758456f2e265f815f # Parent fea3ec87b64921948cdcc26e92d38c102966cc9c Add CVE numbers. 2012-02-13 Andrew John Hughes * NEWS: Add CVE numbers. diff -r fea3ec87b649 -r a49670e226cc ChangeLog --- a/ChangeLog Mon Feb 13 11:53:12 2012 +0000 +++ b/ChangeLog Mon Feb 13 11:55:28 2012 +0000 @@ -1,3 +1,7 @@ +2012-02-13 Andrew John Hughes + + * NEWS: Add CVE numbers. + 2012-02-09 Andrew John Hughes * NEWS: Set release date for 1.10.6. diff -r fea3ec87b649 -r a49670e226cc NEWS --- a/NEWS Mon Feb 13 11:53:12 2012 +0000 +++ b/NEWS Mon Feb 13 11:55:28 2012 +0000 @@ -12,15 +12,15 @@ New in release 1.10.6 (2012-02-14): * Security fixes - - S7082299: Fix in AtomicReferenceArray - - S7088367: Fix issues in java sound - - S7110683: Issues with some KeyboardFocusManager method - - S7110687: Issues with TimeZone class - - S7110700: Enhance exception throwing mechanism in ObjectStreamClass - - S7110704: Issues with some method in corba - - S7112642: Incorrect checking for graphics rendering object - - S7118283: Better input parameter checking in zip file processing - - S7126960: Add property to limit number of request headers to the HTTP Server + - S7082299, CVE-2011-3571: Fix in AtomicReferenceArray + - S7088367, CVE-2011-3563: Fix issues in java sound + - S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager method + - S7110687, CVE-2012-0503: Issues with TimeZone class + - S7110700, CVE-2012-0505: Enhance exception throwing mechanism in ObjectStreamClass + - S7110704, CVE-2012-0506: Issues with some method in corba + - S7112642, CVE-2012-0497: Incorrect checking for graphics rendering object + - S7118283, CVE-2012-0501: Better input parameter checking in zip file processing + - S7126960, CVE-2011-5035: Add property to limit number of request headers to the HTTP Server * Bug fixes - RH580478: Desktop files should not use hardcoded path