From ab97cd56f30beebc035e0584071c3bef91933da1 Mon Sep 17 00:00:00 2001
From: Simon McVittie <smcv@debian.org>
Date: Mon, 9 May 2016 21:57:34 +0100
Subject: [PATCH] Reference CVE-2016-4561 in 3.20160506 changelog

---
 debian/changelog | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/debian/changelog b/debian/changelog
index 3a73c01c8..c4d4eab46 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -2,7 +2,7 @@ ikiwiki (3.20160506) unstable; urgency=medium
 
   [ Simon McVittie ]
   * HTML-escape error messages, in one case avoiding potential cross-site
-    scripting (OVE-20160505-0012)
+    scripting (CVE-2016-4561, OVE-20160505-0012)
   * Mitigate ImageMagick vulnerabilities such as CVE-2016-3714:
     - img: force common Web formats to be interpreted according to extension,
       so that "allowed_attachments: '*.jpg'" does what one might expect
-- 
2.39.5