From d2dfb167dd3aff403350f35b27fbe62b07049ca6 Mon Sep 17 00:00:00 2001
From: "justdave%syndicomm.com" <>
Date: Fri, 4 Apr 2008 11:47:32 +0000
Subject: [PATCH] addition to 2.12 release notes

---
 docs/en/rel_notes.txt | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/docs/en/rel_notes.txt b/docs/en/rel_notes.txt
index 4def4caf37..81807ef4f4 100644
--- a/docs/en/rel_notes.txt
+++ b/docs/en/rel_notes.txt
@@ -60,6 +60,10 @@ bugzilla.mozilla.org.
   middle.
   (bug 29820)
 
+- Some security holes have been fixed where shell escape characters
+  could be passed to Bugzilla, allowing remote users to execute
+  system commands on the web server.
+
 *** Other changes of note ***
 
 - Bug titles now appear in the page title, and will hence
-- 
2.47.2