release-notes/5.20.0

a29069bd · totten · 3fdf9cde · a29069bd · a29069bd
Commit a29069bd authored Dec 04, 2019 by totten
Hide whitespace changes
Inline Side-by-side

Showing with 5 additions and 0 deletions

release-notes.md release-notes.md +1 -0

release-notes/5.20.0.md release-notes/5.20.0.md +4 -0

No files found.
--- a/release-notes.md
+++ b/release-notes.md
@@ -20,6 +20,7 @@ Other resources for identifying changes are:
 Released December 4, 2019

 - **[Synopsis](release-notes/5.20.0.md#synopsis)**
+- **[Security advisories](release-notes/5.20.0.md#security)**
 - **[Features](release-notes/5.20.0.md#features)**
 - **[Bugs resolved](release-notes/5.20.0.md#bugs)**
 - **[Miscellany](release-notes/5.20.0.md#misc)**

--- a/release-notes/5.20.0.md
+++ b/release-notes/5.20.0.md
@@ -21,6 +21,10 @@ Released December 4, 2019
 | **Introduce features?**                                         | **yes** |
 | **Fix bugs?**                                                   | **yes** |

+## <a name="security"></a>Security advisories
+
+- **[CIVI-SA-2019-24](https://civicrm.org/advisory/civi-sa-2019-24-csrf-in-apiv4-ajax-end-point): Cross-site request forgery in APIv4 AJAX endpoint**
+
 ## <a name="features"></a>Features

 ### Core CiviCRM