Update news for 1.2.0 release

NEWS.md

@@ -118,10 +118,31 @@ ClamAV 1.2.0 includes the following improvements and changes:
   message and manpages.
   - GitHub pull request: https://github.com/Cisco-Talos/clamav/pull/936
 
-- ClamOnAcc: Fix error message when using `--wait` without `--ping` option.
+- ClamOnAcc: Fixed error message when using `--wait` without `--ping` option.
   Patch courtesy of Răzvan Cojocaru.
   - GitHub pull request: https://github.com/Cisco-Talos/clamav/pull/984
 
+- Fixed an assortment of code quality issues identified by Coverity:
+  - Github pull requests:
+    - https://github.com/Cisco-Talos/clamav/pull/989
+    - https://github.com/Cisco-Talos/clamav/pull/998
+
+- Windows: Fixed a build issue with the CMake-Rust integration regarding
+  detecting native static libraries that caused builds to fail with Rust
+  version 1.70 and newer.
+  - Github pull request: https://github.com/Cisco-Talos/clamav/pull/992
+
+- Fixed a bounds check issue in the PDF parser that may result in a 1-byte
+  buffer over read but does not cause a crash.
+  - Github pull request: https://github.com/Cisco-Talos/clamav/pull/988
+
+- [CVE-2023-20197](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20197)
+  Fixed a possible denial of service vulnerability in the HFS+ file parser.
+  This issue affects versions 1.1.0, 1.0.1 through 1.0.0, 0.105.2 through 0.105.0,
+  0.104.4 through 0.104.0, and 0.103.8 through 0.103.0.
+  Thank you to Steve Smith for reporting this issue.
+  - Github pull request: https://github.com/Cisco-Talos/clamav/pull/1000
+
 ### Acknowledgments
 
 Special thanks to the following people for code contributions and bug reports: