changelog: Mention fix for authz bypass vulnerability in 1.8.6 (#4318)

2020-09-20 15:21:46 -04:00 · 2020-09-20 15:21:46 -04:00 · df7fa1fd41
parent 299bd962b6
commit df7fa1fd41
1 changed files with 2 additions and 2 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -3,9 +3,9 @@

 # 1.8.6
 * IMPORTANT: This fixes a severe problem with postgresql in 1.8.5
-* SECURITY: Fix authentication bypass vulnerability
+* SECURITY: Fix authentication and authorization bypass vulnerabilities
 * API: Update version to 1.2.15
-* FEATURE: Add copyPadWithoutHistory API (#4295) 
+* FEATURE: Add copyPadWithoutHistory API (#4295)
 * FEATURE: Package more asset files to save http requests (#4286)
 * MINOR: Improve UI when reconnecting
 * TESTS: Improve tests