From 2b533ae60e37f68fc6e9328334cd813cf0b4aa09 Mon Sep 17 00:00:00 2001
From: Mariusz Felisiak <felisiak.mariusz@gmail.com>
Date: Mon, 1 Jul 2019 10:14:36 +0200
Subject: [PATCH] [2.2.x] Added CVE-2019-12781 to the security release archive.

Backport of 868cd56f058ca203419ad0886353173b74c3bcf1 from master
---
 docs/releases/security.txt | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/docs/releases/security.txt b/docs/releases/security.txt
index d26669d63a..2e1e941988 100644
--- a/docs/releases/security.txt
+++ b/docs/releases/security.txt
@@ -961,3 +961,16 @@ Versions affected
 * Django 2.2 :commit:`(patch) <afddabf8428ddc89a332f7a78d0d21eaf2b5a673>`
 * Django 2.1 :commit:`(patch) <09186a13d975de6d049f8b3e05484f66b01ece62>`
 * Django 1.11 :commit:`(patch) <c238701859a52d584f349cce15d56c8e8137c52b>`
+
+July 1, 2019 - :cve:`2019-12781`
+--------------------------------
+
+Incorrect HTTP detection with reverse-proxy connecting via HTTPS. `Full
+description <https://www.djangoproject.com/weblog/2019/jul/01/security-releases/>`__
+
+Versions affected
+~~~~~~~~~~~~~~~~~
+
+* Django 2.2 :commit:`(patch) <77706a3e4766da5d5fb75c4db22a0a59a28e6cd6>`
+* Django 2.1 :commit:`(patch) <1e40f427bb8d0fb37cc9f830096a97c36c97af6f>`
+* Django 1.11 :commit:`(patch) <32124fc41e75074141b05f10fc55a4f01ff7f050>`