--- libgig/trunk/ChangeLog	2017/07/29 09:59:35	3334
+++ libgig/trunk/ChangeLog	2017/10/03 15:05:45	3348
@@ -10,6 +10,8 @@
     - print compiler warning if no RTTI available
     - Fixed potential crash in command line tools gig2stereo, korg2gig,
       korgdump and sf2extract.
+    - Fixed CVE-2017-12950, CVE-2017-12952, CVE-2017-12953
+      (original patch by Paul Brossier, slightly modified).
 
   * src/gig.cpp, src/gig.h:
     - fixed bug in Script::SetGroup: the script chunk wasn't moved