X-Git-Url: https://vcs.fsf.org/?p=squirrelmail.git;a=blobdiff_plain;f=ChangeLog;h=b62b16edf1e9dbf52ea2268e01d7b77054f9975b;hp=070071e40488329baa633f47328413b0c3f1d377;hb=4127171c46d6990dfdc6fd4a4cda39299ff1fbfd;hpb=7e2ff8448ac2f801e4ffc43c1149c94a8a760800

diff --git a/ChangeLog b/ChangeLog
index 070071e4..b62b16ed 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -150,7 +150,6 @@ Version 1.5.2 - CVS
     generated. Safety check for insecure default UW IMAP setup (#1557078).
   - Ignore message copy errors when messages are deleted. Allows to delete
     messages when quota is exceeded. (#614887) (#646386) (#1446026)
-  - Added filter_hook_function() hook type.
   - Fixed unintended literal fetching (#1562271).
   - Checked if configuration file is readable in configuration utility
     (#1568355).
@@ -163,6 +162,12 @@ Version 1.5.2 - CVS
     and mailto functionality [CVE-2006-6142].
   - Security: work around an issue in Internet Explorer that would guess
     the mime type of a file based on contents, not Content-Type header.
+  - Security: Multiple IE cross site scripting issues related to the
+    generous parsing of the words 'expression' and 'url' by IE.
+  - Security: Removing @import when sanitizing html mail.
+  - Redesigned plugin hook system.  do_hook_function() has been removed
+    and do_hook() now emulates do_hook_function()'s return value and 
+    also has its plugin arguments passed by value, etc.
 
 Version 1.5.1 (branched on 2006-02-12)
 --------------------------------------