Reference CVE-2016-4561 in 3.20160506 changelog

2016-05-09 21:57:34 +01:00 · 2016-05-09 21:57:34 +01:00 · ab97cd56f3
parent 6879e37828
commit ab97cd56f3
1 changed files with 1 additions and 1 deletions
--- a/debian/changelog
+++ b/debian/changelog
@ -2,7 +2,7 @@ ikiwiki (3.20160506) unstable; urgency=medium

  [ Simon McVittie ]
  * HTML-escape error messages, in one case avoiding potential cross-site
-    scripting (OVE-20160505-0012)
+    scripting (CVE-2016-4561, OVE-20160505-0012)
  * Mitigate ImageMagick vulnerabilities such as CVE-2016-3714:
    - img: force common Web formats to be interpreted according to extension,
      so that "allowed_attachments: '*.jpg'" does what one might expect