Fix entity_decode() issue

commit: eea02de557834006c5d6a0bfccca7f39e75bf3a8 [log] [tgz]
author: Andrey Andreev <narf@devilix.net> Tue Sep 27 14:59:37 2016 +0300
committer: Andrey Andreev <narf@devilix.net> Tue Sep 27 14:59:37 2016 +0300
tree: ae9800d9d0f358b9df53d559f9eaa95b7b3df218
parent: 8a15f5af819424087b6676709d98de6fa5fc6115 [diff] [blame]
diff --git a/user_guide_src/source/changelog.rst b/user_guide_src/source/changelog.rst
index d41e799..a0ed34a 100644
--- a/user_guide_src/source/changelog.rst
+++ b/user_guide_src/source/changelog.rst

@@ -7,6 +7,10 @@
 
 Release Date: Not Released
 
+-  **Security**
+
+   -  Fixed a flaw in :doc:`Security Library <libraries/security>` method ``entity_decode()`` (used by ``xss_clean()``) that affects HTML 5 entities when using PHP 5.3.
+
 -  General Changes
 
    -  Added ``E_PARSE`` to the list of error levels detected by the shutdown handler.
commit	eea02de557834006c5d6a0bfccca7f39e75bf3a8	[log] [tgz]
author	Andrey Andreev <narf@devilix.net>	Tue Sep 27 14:59:37 2016 +0300
committer	Andrey Andreev <narf@devilix.net>	Tue Sep 27 14:59:37 2016 +0300
tree	ae9800d9d0f358b9df53d559f9eaa95b7b3df218
parent	8a15f5af819424087b6676709d98de6fa5fc6115 [diff] [blame]