Update changelog.0.4.2

author: Andi Albrecht <albrecht.andi@gmail.com> 2021-09-10 08:50:50 +0200
committer: Andi Albrecht <albrecht.andi@gmail.com> 2021-09-10 08:50:50 +0200
commit: b1f76f6fa9763ee0f1d3a3870f05565abf1314e8 (patch)
tree: 860fd5e93ecfa5aac0c3c9df153bf4beec36bfd5
parent: 3eec44e52233c68ea8299a16b36ec7f2ad0c2fe3 (diff)
download: sqlparse-0.4.2.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/CHANGELOG b/CHANGELOG
index 7be71b6..65e03fc 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -6,7 +6,7 @@ Notable Changes
 * IMPORTANT: This release fixes a security vulnerability in the
   strip comments filter. In this filter a regular expression that was
   vulnerable to ReDOS (Regular Expression Denial of Service) was
-  used.
+  used. See the security advisory for details: https://github.com/andialbrecht/sqlparse/security/advisories/GHSA-p5w8-wqhj-9hhf
   The vulnerability was discovered by @erik-krogh and @yoff from
   GitHub Security Lab (GHSL). Thanks for reporting!
author	Andi Albrecht <albrecht.andi@gmail.com>	2021-09-10 08:50:50 +0200
committer	Andi Albrecht <albrecht.andi@gmail.com>	2021-09-10 08:50:50 +0200
commit	b1f76f6fa9763ee0f1d3a3870f05565abf1314e8 (patch)
tree	860fd5e93ecfa5aac0c3c9df153bf4beec36bfd5
parent	3eec44e52233c68ea8299a16b36ec7f2ad0c2fe3 (diff)
download	sqlparse-0.4.2.tar.gz