From: Ben Darnell <ben@bendarnell.com>
Date: Tue, 6 May 2014 02:44:01 +0000 (-0400)
Subject: Give credit to Joost Pol for reporting the security issue.
X-Git-Tag: v3.2.2~7
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=636965fda0d3eb2acd05a2b25cf116e0a1d7130a;p=thirdparty%2Ftornado.git

Give credit to Joost Pol for reporting the security issue.
---

diff --git a/docs/releases/v3.2.1.rst b/docs/releases/v3.2.1.rst
index b63641102..f085b09ca 100644
--- a/docs/releases/v3.2.1.rst
+++ b/docs/releases/v3.2.1.rst
@@ -19,6 +19,8 @@ Security fixes
   by default until they expire.  Applications that may be vulnerable
   can reject all cookies in the older format by passing ``min_version=2``
   to `.RequestHandler.get_secure_cookie`.
+* Thanks to Joost Pol of `Certified Secure <https://www.certifiedsecure.com>`_
+  for reporting this issue.
 
 Backwards-compatibility notes
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~