From 2ae3b8b727b48ae892834fdc47abce3f43558a1c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Dag-Erling=20Sm=C3=B8rgrav?= <des@des.no>
Date: Tue, 9 Sep 2014 09:13:00 +0000
Subject: [PATCH] Include CVE numbers when available

git-svn-id: svn+ssh://svn.openpam.org/svn/openpam/trunk@805 185d5e19-27fe-0310-9dcf-9bff6b9f3609
---
 HISTORY | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/HISTORY b/HISTORY
index 7f2e359..396eda5 100644
--- a/HISTORY
+++ b/HISTORY
@@ -2,7 +2,7 @@ OpenPAM ??????????						2014-??-??
 
  - BUGFIX: Under certain circumstances, specifying a non-existent
    module (or misspelling the name of a module) in a policy could
-   result in a fail-open scenario.
+   result in a fail-open scenario.  (CVE-2014-3879)
 
  - FEATURE: Add a pam_oath module that implements RFC 4226 (HOTP) and
    RFC 6238 (TOTP).
@@ -114,7 +114,7 @@ OpenPAM Lycopsida						2011-12-18
    module before loading it.
 
  - ENHANCE: added / improved input validation in many cases, including
-   the policy file and some function arguments.
+   the policy file and some function arguments.  (CVE-2011-4122)
 ============================================================================
 OpenPAM Hydrangea						2007-12-21