Added a few more badword checks to Utils.suspiciousHTML().

Added validation of GUI updates to host_name.

1 files changed, 5 insertions, 0 deletions

diff --git a/NEWS b/NEWS
index 4e707a72..1541b414 100644
--- a/NEWS
+++ b/NEWS
@@ -7,6 +7,11 @@ Here is a history of user visible changes to Mailman.
 
 2.1.27 (xx-xxx-xxxx)
 
+  Security
+
+    - Existing protections against malicious listowners injecting evil
+      scripts into listinfo pages have had a few more checks added.
+
   Bug fixes and other patches
 
     - Bad values in a list's topics will no longer break everything that