From 850c101a504638aa71cf51440722f64b786a71a8 Mon Sep 17 00:00:00 2001
From: Nate Berkopec <nate.berkopec@gmail.com>
Date: Thu, 27 Feb 2020 12:00:46 -0600
Subject: [PATCH] 4.3.2 and 3.12.3 release notes

---
 History.md | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/History.md b/History.md
index 676f5640..4d5696ba 100644
--- a/History.md
+++ b/History.md
@@ -8,7 +8,7 @@
   * `GC.compact` is called before fork if available (#2093)
   * Add `requests_count` to workers stats. (#2106)
   * Changed #connected_port to #connected_ports (#2076)
-  
+
 * Bugfixes
   * Windows update extconf.rb for use with ssp and varied Ruby/MSYS2 combinations (#2069)
   * Preserve `BUNDLE_GEMFILE` env var when using `prune_bundler` (#1893)
@@ -20,6 +20,11 @@
   * Simplify `Configuration.random_token` and remove insecure fallback (#2102)
   * Simplify `Runner#start_control` URL parsing (#2111)
 
+## 4.3.2 and 3.12.3 / 2020-02-27
+
+* Security
+  * Fix: Prevent HTTP Response splitting via CR/LF in header values. CVE-2020-5247.
+
 ## 4.3.1 and 3.12.2 / 2019-12-05
 
 * Security