Retro-add release notes for 2.3.1 for #7864

aclark4life · aclark4life · commit c451df35bdd3 · 2024-03-13T15:11:23.000-04:00
diff --git a/docs/releasenotes/2.3.1.rst b/docs/releasenotes/2.3.1.rst
@@ -0,0 +1,12 @@
+2.3.1
+-----
+
+Security
+========
+
+Fix CVE-2014-1932, CVE-2014-1933
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+.. note:: More information about these vulnerabilities included in database records :cve:`CVE-2014-1932`, :cve:`CVE-2014-1933`
+
+Fix insecure use of tempfile.mktemp as reported in `Debian bug #737059 <https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737059>`_.
