From 93f407ae2e4dedf66fe93c7e0512445c8bca898a Mon Sep 17 00:00:00 2001
From: Allan McRae <allan@archlinux.org>
Date: Thu, 18 Dec 2014 11:01:43 +1000
Subject: [PATCH] Label CVE-2014-9402 in NEWS

---
 NEWS | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/NEWS b/NEWS
index e4c424414ff..d65c0e25d6a 100644
--- a/NEWS
+++ b/NEWS
@@ -18,8 +18,9 @@ Version 2.18.1
 * CVE-2012-3406 printf-style functions could run into a stack overflow when
   processing format strings with a large number of format specifiers.
 
-* The nss_dns implementation of getnetbyname could run into an infinite loop
-  if the DNS response contained a PTR record of an unexpected format.
+* CVE-2014-9402 The nss_dns implementation of getnetbyname could run into an
+  infinite loop if the DNS response contained a PTR record of an unexpected
+  format.
 
 * CVE-2014-4043 The posix_spawn_file_actions_addopen implementation did not
   copy the path argument.  This allowed programs to cause posix_spawn to
-- 
2.47.2