]> git.vanrenterghem.biz Git - git.ikiwiki.info.git/blobdiff - debian/changelog
projects / git.ikiwiki.info.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Reference CVE-2016-4561 in 3.20160506 changelog
[git.ikiwiki.info.git] / debian / changelog
diff --git a/debian/changelog b/debian/changelog
index 96fef00cd5c85f68d95607dc3f4034a4c9d1763b..c4d4eab46693a6487be3803e43cf898c945976c3 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,10 +1,8 @@
 ikiwiki (3.20160506) unstable; urgency=medium
 
   [ Simon McVittie ]
-  * img: stop ImageMagick trying to be clever if filenames contain a colon,
-    avoiding mis-processing
   * HTML-escape error messages, in one case avoiding potential cross-site
-    scripting (OVE-20160505-0012)
+    scripting (CVE-2016-4561, OVE-20160505-0012)
   * Mitigate ImageMagick vulnerabilities such as CVE-2016-3714:
     - img: force common Web formats to be interpreted according to extension,
       so that "allowed_attachments: '*.jpg'" does what one might expect
Unnamed repository; edit this file 'description' to name the repository.