From 9a969ef7708b752e35f825190735ce20e6031302 Mon Sep 17 00:00:00 2001
From: Remi Collet <fedora@famillecollet.com>
Date: Fri, 18 Mar 2016 13:48:58 +0100
Subject: php 5.4: add 3 CVE ref in changelog

---
 php.spec | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/php.spec b/php.spec
index f0d84ad..820c109 100644
--- a/php.spec
+++ b/php.spec
@@ -1687,6 +1687,7 @@ EOF
 - Fix #71039: exec functions ignore length but look for NULL termination
 - Fix #71720: heap bufferover flow in escapeshell functions
 - Fix #71488: Stack overflow when decompressing tar archives
+  CVE-2016-2554
 - upgrade bundled PCRE to 8.38
 
 * Wed Jan  6 2016 Remi Collet <remi@fedoraproject.org> 5.4.45-3
@@ -1698,8 +1699,9 @@ EOF
 
 * Wed Sep 30 2015 Remi Collet <remi@fedoraproject.org> 5.4.45-2
 - Fix bug #70433 - Uninitialized pointer in phar_make_dirstream
-  when zip entry filename is "/"
+  when zip entry filename is "/" CVE-2015-7804
 - Fix bug #69720: Null pointer dereference in phar_get_fp_offset()
+  CVE-2015-7803
 
 * Wed Sep  2 2015 Remi Collet <remi@fedoraproject.org> 5.4.45-1
 - Update to 5.4.45
-- 
cgit