Document CVE-2019-12970 fix

author pdontthink <pdontthink@7612ce4b-ef26-0410-bec9-ea0150e637f0>

Wed, 24 Jul 2019 01:13:11 +0000 (01:13 +0000)

committer pdontthink <pdontthink@7612ce4b-ef26-0410-bec9-ea0150e637f0>

Wed, 24 Jul 2019 01:13:11 +0000 (01:13 +0000)
author pdontthink <pdontthink@7612ce4b-ef26-0410-bec9-ea0150e637f0>
Wed, 24 Jul 2019 01:13:11 +0000 (01:13 +0000)
committer pdontthink <pdontthink@7612ce4b-ef26-0410-bec9-ea0150e637f0>
Wed, 24 Jul 2019 01:13:11 +0000 (01:13 +0000)
diff --git a/doc/ChangeLog b/doc/ChangeLog

index 42ffee7142e744b3c8b362fd8f577c97b242b836..00c90fade11fca06fc64aeecc0edcbdd90fc9cdc 100644 (file)
--- a/doc/ChangeLog
+++ b/doc/ChangeLog
@@ -429,6 +429,8 @@ Version 1.5.2 - SVN
    - Added IMAP ID command (RFC2971), sent after every login - use
      by setting $imap_id_command_args in config/config_local.php
      (see notes in config/config_local.example.php for more details)
+  - Added handling for RCDATA and RAWTEXT elements in HTML sanitizer
+    [CVE-2019-12970]
  
  Version 1.5.1 (branched on 2006-02-12)
  --------------------------------------
author	pdontthink <pdontthink@7612ce4b-ef26-0410-bec9-ea0150e637f0>
	Wed, 24 Jul 2019 01:13:11 +0000 (01:13 +0000)
committer	pdontthink <pdontthink@7612ce4b-ef26-0410-bec9-ea0150e637f0>
	Wed, 24 Jul 2019 01:13:11 +0000 (01:13 +0000)