From 35abb461b7a835e0ecb1855daca33b0d04b7bbf6 Mon Sep 17 00:00:00 2001
From: Noah Slater <nslater@apache.org>
Date: Tue, 17 Aug 2010 15:58:27 +0000
Subject: added notice about CVE-2010-2234

git-svn-id: https://svn.apache.org/repos/asf/couchdb/branches/1.0.x@986368 13f79535-47bb-0310-9956-ffa450edef68
---
 NEWS | 1 +
 1 file changed, 1 insertion(+)

diff --git a/NEWS b/NEWS
index bd6b5d2b..121c6b0e 100644
--- a/NEWS
+++ b/NEWS
@@ -38,6 +38,7 @@ Version 0.11.2
   * User documents can now be deleted by admins or the user.
   * Avoid potential DOS attack by guarding all creation of atoms.
   * Some Futon and JavaScript library bugfixes.
+  * Fixed CVE-2010-2234: Apache CouchDB Cross Site Request Forgery Attack
 
 Version 0.11.1
 --------------
-- 
cgit v1.2.3