add CVE and issue number

2015-12-05 00:17:57 -08:00 · 2015-12-05 00:17:57 -08:00 · 5e621176c4
parent b03856ab66
commit 5e621176c4
1 changed files with 3 additions and 2 deletions
--- a/Misc/NEWS
+++ b/Misc/NEWS
@ -99,8 +99,9 @@ Library
 - Issue #21766: Prevent a security hole in CGIHTTPServer by URL unquoting paths
  before checking for a CGI script at that path.

- Fix arbitrary memory access in JSONDecoder.raw_decode with a negative second
-  parameter. Bug reported by Guido Vranken.
+- Issue #21529 (CVE-2014-4616): Fix arbitrary memory access in
+  JSONDecoder.raw_decode with a negative second parameter. Bug reported by Guido
+  Vranken.

 - Issue #21082: In os.makedirs, do not set the process-wide umask. Note this
  changes behavior of makedirs when exist_ok=True.