Update devel changelog with security vuln.

git-svn-id: https://svn.code.sf.net/p/squirrelmail/code/trunk/squirrelmail@7767 7612ce4b-ef26-0410-bec9-ea0150e637f0

diff --git a/ChangeLog b/ChangeLog
index 8850355d7d775c67cbeb8fc394ceff310d15083d..91fcc1b373213ee7fa69f85c4f9e821f31e5096a 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -67,6 +67,8 @@ Version 1.5.1 -- CVS
   - Give proper error when PEAR DB not found.
   - Remove inappropriate strip_tags() from add-to-addressbook (#968475).
   - Prefs caching didn't work properly with register_globals off (#995102).
+  - Security: fix SQL injection vulnerability in addressbook
+    (CVE ID: CAN-2004-0521).
 
 Version 1.5.0
 --------------------