Update WHATSNEW for release

interchange · Mar 24, 2010 · 9c3c577 · 9c3c577
1 parent 9b406a8
commit 9c3c577
Showing 1 changed file with 33 additions and 1 deletion.
diff --git a/WHATSNEW-5.7 b/WHATSNEW-5.7
@@ -8,8 +8,23 @@
 See UPGRADE document for a list of incompatible changes.
 
 
-Interchange 5.7.6 not yet released.
+Interchange 5.7.6 released on 2010-03-23.
 
+Core
+----
+* Fix a "HTTP Response Splitting" security exploit.  This is not known
+  to be exploitable in the standard demo, but could potentially affect
+  other pages in rare circumstances.
+
+* Fix a bug in initialization of Vend::Payment::BusinessOnlinePayment
+  supplemental parameters.
+
+* Fix a bug in css.tag to properly output the css when using the
+  inline <style> block.
+
+* Allow for bounces from Autoload routines.
+
+* Fix SpecialPages directive for violation.html.
 
 Standard Demo
 -------------
@@ -18,6 +33,23 @@ Standard Demo
 
 * Add comments for Limit ip_session_expire.
 
+Admin UI
+--------
+
+* Remove the AdminUser configuration directive.
+
+* Allow ids to be added to form widgets built from mv_metadata.
+
+Contrib
+-------
+
+* Update jEdit syntax highlighting mode.
+
+Debian packaging
+----------------
+
+* Multiple bug/dependency fixes.
+
 ------------------------------------------------------------------------------