From 4214c7290ee25f1bfacc7bf5e1bb7de7c9806861 Mon Sep 17 00:00:00 2001
From: Jesse Vincent <jesse@bestpractical.com>
Date: Mon, 20 Jan 2014 21:39:41 -0500
Subject: [PATCH] first pass at a changelog for 4.900

---
 res/xml/changelog_master.xml | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)

diff --git a/res/xml/changelog_master.xml b/res/xml/changelog_master.xml
index 7d2cac774..34d8c1b62 100644
--- a/res/xml/changelog_master.xml
+++ b/res/xml/changelog_master.xml
@@ -8,6 +8,27 @@
      They are automatically updated with "ant bump-version".
 -->
 <changelog>
+    <release version="4.900" versioncode="21000" >
+        <change>Fix issue 6064: Inline images don't display on KitKat</change>
+        <change>Update list of German Internet providers</change>
+        <change>Add provider Outlook.sk and Azet.sk to provider list</change>
+        <change>Update Brazilian Portuguese, Czech, Danish, Dutch, French, Greek, Hungarian, Polish, Russian, Slovak, Spanish, and Ukrainian translations</change>
+        <change>Fix POP3 STLS command</change>
+        <change>Use a locale-specific date in the header of a quoted message</change>
+        <change>Account preferences clean-up</change>
+        <change>Make IMAP autoconfig recognize "Draft" as drafts folder</change>
+        <change>Add posteo.de to providers.xml</change>
+        <change>Return proper error message when certificate couldn't be verified against global key store</change>
+        <change>Add support for bitcoin URIs</change>
+        <change>Change the way we harden SSL/TLS sockets Blacklist a couple of weak ciphers, bring known ones in a defined order and sort unknown ciphers at the end. Also re-enable SSLv3 because it's still used a lot.</change>
+        <change>Implement pruning of old certificates from LocalKeyStore. Certificates are deleted whenever server settings are changed or an account is deleted.</change>
+        <change>Fix inadequate certificate validation. Proper host name validation was not being performed for certificates kept in the local keystore.  If an attacker could convince a user to accept and store an attacker's certificate, then that certificate could be used for MITM attacks, giving the attacker access to all connections to all servers in all accounts in K-9.</change>
+        <change>Users can now use different certificates for different servers on the same host (listening to different ports).</change>
+        <change>The above changes mean that users might have to re-accept certificates that they had previously accepted and are still using (but only if the certificate's Subject doesn't match the host that they are connecting to).</change>
+        <change>Make sure to return different colors for senders with different name, but the same mail address (e.g. mails sent by certain issue tracking systems).</change>
+        <change>With the new webview scrollview combo we've got loadinoverviewmode seems to behave better.</change>
+        <change>Fix file selection for import Using FLAG_ACTIVITY_NO_HISTORY will cause the file selection to fail when KitKat's "Open from" activity opens a third-party activity.</change>
+    </release>
     <release version="4.701" versioncode="19002" >
         <change>Overhauled how we do message view scrolling to fix a KitKat issue. Thanks to Joe Steele!</change>
         <change>Hardened TLS cipher suites and versions</change>