Update the NEWS.

author Wayne Davison <wayne@opencoder.net>

Sun, 7 Aug 2022 16:59:43 +0000 (09:59 -0700)

committer Wayne Davison <wayne@opencoder.net>

Sun, 7 Aug 2022 16:59:43 +0000 (09:59 -0700)
author Wayne Davison <wayne@opencoder.net>
Sun, 7 Aug 2022 16:59:43 +0000 (09:59 -0700)
committer Wayne Davison <wayne@opencoder.net>
Sun, 7 Aug 2022 16:59:43 +0000 (09:59 -0700)
diff --git a/NEWS.md b/NEWS.md

index 70c0b00fda545c0e9252cd618ab383fc726bd759..0c212da9c3e48923fac390843e67fc39e41a9bcc 100644 (file)
--- a/NEWS.md
+++ b/NEWS.md
@@ -13,12 +13,15 @@
    directory that contains files that aren't from the remote host unless you
    trust the remote host). Fixes CVE-2022-29154.
  
+ - A fix for CVE-2022-37434 in the bundled zlib (buffer overflow issue).
+
  ### BUG FIXES:
  
  - Fixed the configure check for signed char that was causing a host that
    defaults to unsigned characters to generate bogus rolling checksums. This
    made rsync send mostly literal data for a copy instead of finding matching
-  data in the receiver's basis file.
+  data in the receiver's basis file (for a file that contains high-bit
+  characters).
  
  - Lots of manpage improvements, including an attempt to better describe how
    include/exclude filters work.
author	Wayne Davison <wayne@opencoder.net>
	Sun, 7 Aug 2022 16:59:43 +0000 (09:59 -0700)
committer	Wayne Davison <wayne@opencoder.net>
	Sun, 7 Aug 2022 16:59:43 +0000 (09:59 -0700)