update changelog for 1.0.6 release

jupyter-server · Nov 18, 2020 · 0c094b8 · 0c094b8
1 parent 3d83e49
commit 0c094b8
Show file tree

Hide file tree

Showing 2 changed files with 18 additions and 0 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -7,6 +7,15 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+## [1.0.6] - 2020-11-18
+
+1.0.6 is a security release, fixing one vulnerability:
+
+### Changed
+
+- Fix open redirect vulnerability GHSA-grfj-wjv9-4f9v (CVE-2020-26232)
+
+
 ## [1.0] - 2020-9-18
 
 ### Added.

diff --git a/docs/source/other/changelog.rst b/docs/source/other/changelog.rst
@@ -21,6 +21,15 @@ We strongly recommend that you upgrade to version 9+ of pip before upgrading ``j
     Use ``pip install pip --upgrade`` to upgrade pip. Check pip version with
     ``pip --version``.
 
+.. _release-1.0.6:
+
+1.0.6
+-----
+
+1.0.6 is a security release, fixing one vulnerability:
+
+- Fix open redirect vulnerability GHSA-grfj-wjv9-4f9v (CVE-2020-26232)
+
 .. _release-1.0.0:
 
 1.0.0