[ci skip] Update NEWS

author: Stanislav Malyshev <stas@php.net> 2021-01-04 01:46:32 -0800
committer: Stanislav Malyshev <stas@php.net> 2021-01-04 01:46:32 -0800
commit: e65932060ab2caf9c2e2f12547e3661bf478feb7 (patch)
tree: ee5766d7c6b54ac304f2dbab30f9fe5077b61154
parent: ec589a27da40d06c35e447c83a0827af4fa05120 (diff)
download: php-git-e65932060ab2caf9c2e2f12547e3661bf478feb7.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index 03610ab9c5..60741d463a 100644
--- a/NEWS
+++ b/NEWS
@@ -73,6 +73,8 @@ PHP                                                                        NEWS
   . Fixed bug #76813 (Access violation near NULL on source operand). (cmb)
 
 - Standard:
+  . Fixed bug #77423 (FILTER_VALIDATE_URL accepts URLs with invalid userinfo). 
+    (CVE-2020-7071) (cmb)
   . Fixed bug #80366 (Return Value of zend_fstat() not Checked). (sagpant, cmb)
   . Fixed bug #80411 (References to null-serialized object break serialize()).
     (Nikita)
author	Stanislav Malyshev <stas@php.net>	2021-01-04 01:46:32 -0800
committer	Stanislav Malyshev <stas@php.net>	2021-01-04 01:46:32 -0800
commit	e65932060ab2caf9c2e2f12547e3661bf478feb7 (patch)
tree	ee5766d7c6b54ac304f2dbab30f9fe5077b61154
parent	ec589a27da40d06c35e447c83a0827af4fa05120 (diff)
download	php-git-e65932060ab2caf9c2e2f12547e3661bf478feb7.tar.gz