diff --git a/CHANGES b/CHANGES
index 94e65ee92..eef99836e 100644
--- a/CHANGES
+++ b/CHANGES
@@ -269,3 +269,11 @@ CHANGES from sudo 1.3.1pl4
 92) Fixed a bug in sudo.c.  If a user has no passwd entry sudo would
     dump core (writing to a garbage pointer).  Pointed out by
     Stephen Schaefer <sps@gateway.bsis.com>.
+
+93) Worked around a bug in AIX's lex in parse.c.  AIX lex doesn't seem
+    to handle {x,y} range notation correctly.  Bleah.
+
+94) Sudo would not report a failed attempt if the user entered <return>
+    at the 2nd password: prompt so someone trying to guess a password
+    could just invoked sudo multiple times and try one passwd at a time.
+    Reported by Jonathan Adams <jonathan@smada.com>.