From 198b14fe1f667acdb7353063c1abeb4d5f40c8b2 Mon Sep 17 00:00:00 2001
From: Anders Kaseorg <andersk@mit.edu>
Date: Wed, 16 Mar 2016 13:50:19 -0400
Subject: [PATCH] Flesh out changelog for 1.6.17

Use urgency=high because this is a security release.

Signed-off-by: Anders Kaseorg <andersk@mit.edu>
---
 debian/changelog | 16 +++++++++++++---
 1 file changed, 13 insertions(+), 3 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index e14676588..21a637cd1 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,16 @@
-openafs (1.6.17-1) UNRELEASED; urgency=medium
-
-  * New upstream release.
+openafs (1.6.17-1) UNRELEASED; urgency=high
+
+  * New upstream release 1.6.16.
+    - Fix bosserver crashes related to fixed-sized buffers.
+    - Fix potential denial of service issue in pioctl logic
+      (CVE-2015-8312).
+    - Provide a new vos remaddrs subcommand for removing server entries.
+    - Allow pioctls to work with read-only /proc (e.g. Docker containers).
+  * New upstream security release 1.6.17.
+    - Prevent users in foreign Kerberos realms from creating groups as if
+      they were administrators (CVE-2016-2860).
+    - Fix an information leak of uninitialized memory over the network.
+    - Fix a crash when the AFS root volume is not found.
 
  -- Anders Kaseorg <andersk@mit.edu>  Wed, 16 Mar 2016 13:39:06 -0400
 
-- 
2.39.5