also mention 3.20141016.2

author http://smcv.pseudorandom.co.uk/ <smcv@web>

Mon, 30 Mar 2015 10:53:00 +0000 (06:53 -0400)

committer admin <admin@branchable.com>

Mon, 30 Mar 2015 10:53:00 +0000 (06:53 -0400)
author http://smcv.pseudorandom.co.uk/ <smcv@web>
Mon, 30 Mar 2015 10:53:00 +0000 (06:53 -0400)
committer admin <admin@branchable.com>
Mon, 30 Mar 2015 10:53:00 +0000 (06:53 -0400)
diff --git a/doc/news/version_3.20150329.mdwn b/doc/news/version_3.20150329.mdwn

index 0ac19a88ddf6b93dc5f2ef3d05b9ee5be0f347f1..983bd2e8462eeeee35beadd6a240680ffdbbb8fa 100644 (file)
--- a/doc/news/version_3.20150329.mdwn
+++ b/doc/news/version_3.20150329.mdwn
@@ -1,4 +1,6 @@
-ikiwiki 3.20150329 released with [[!toggle text="these changes"]]
+ikiwiki 3.20150329 released with [[!toggle text="these changes"]]. This is a
+security update fixing a cross-site scripting vulnerability.
+
  [[!toggleable text="""
    [ [[Joey Hess|joey]] ]
  
@@ -25,3 +27,6 @@ ikiwiki 3.20150329 released with [[!toggle text="these changes"]]
    * Fix XSS in openid selector. Thanks, Raghav Bisht.
      (Closes: [[!debbug 781483]])
  """]]
+
+In addition, version 3.20141016.2 was released on the same day to backport
+the cross-site-scripting fix to Debian 8.
author	http://smcv.pseudorandom.co.uk/ <smcv@web>
	Mon, 30 Mar 2015 10:53:00 +0000 (06:53 -0400)
committer	admin <admin@branchable.com>
	Mon, 30 Mar 2015 10:53:00 +0000 (06:53 -0400)