diff --git a/www/changelog.xml b/www/changelog.xml
index 451d721b..f7463ae7 100644
--- a/www/changelog.xml
+++ b/www/changelog.xml
@@ -17,6 +17,9 @@
- OpenConnect HEAD
+ - Fix overflow on HTTP request buffers (CVE-2012-6128)
+ - Fix connection to servers with round-robin DNS with two-stage auth/connect.
+ - Impose minimum MTU of 1280 bytes.
- Fix some harmless issues reported by Coverity.
- Improve "Attempting to connect..." message to be explicit when it's connecting to a proxy.