Explain why we did 1.1.2

wiki/src/news/version_1.1.2.mdwn

@@ -8,6 +8,17 @@ This release fixes [[numerous security
 issues|security/Numerous_security_holes_in_1.1.1]] and all users must
 [[upgrade|doc/first_steps/upgrade]] as soon as possible.
 
+We prepared this release mainly to fix a [[serious
+flaw|https://blog.mozilla.org/security/2014/09/24/rsa-signature-forgery-in-nss/]]
+in the Network Security Services (NSS) library used by Firefox and other
+products allows attackers to create forged RSA certificates.
+
+Before this release, users on a compromised network could be directed to sites
+using a fraudulent certificate and mistake them for legitimate sites. This could
+deceive them into revealing personal information such as usernames and
+passwords. It may also deceive users into downloading malware if they believe
+it’s coming from a trusted site.
+
 [[!toc levels=1]]
 
 # Changes