From e9e2e5d4601fe4474bd2cff70a2c8c6a7c7387c3 Mon Sep 17 00:00:00 2001
From: Werner Lemberg <wl@gnu.org>
Date: Thu, 27 Apr 2017 13:25:58 +0200
Subject: [PATCH] Document CVE-2017-8287.

---
 docs/CHANGES | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/docs/CHANGES b/docs/CHANGES
index d42accbe3..8df2b13d5 100644
--- a/docs/CHANGES
+++ b/docs/CHANGES
@@ -29,11 +29,12 @@ CHANGES BETWEEN 2.7.1 and 2.8
       now scales  the font linearly  again (bug introduced  in version
       2.4.6).
 
-    - CVE-2017-8105:  Older  FreeType  versions has  an  out-of-bounds
-      write caused by a heap-based buffer overflow related to the Type
-      1 fonts.
+    - CVE-2017-8105,  CVE-2017-8287:  Older   FreeType  versions  have
+      out-of-bounds  writes  caused  by  heap-based  buffer  overflows
+      related to Type 1 fonts.
 
-        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8105
+        https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8105
+        https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8287
 
 
   III. MISCELLANEOUS