diff --git a/CHANGES.rst b/CHANGES.rst
index 16c32adc571..e22fe28c135 100644
--- a/CHANGES.rst
+++ b/CHANGES.rst
@@ -10,6 +10,68 @@
 
 .. towncrier release notes start
 
+3.12.7 (2025-06-02)
+===================
+
+Bug fixes
+---------
+
+- Fixed cookie parsing to be more lenient when handling cookies with special characters
+  in names or values. Cookies with characters like ``{``, ``}``, and ``/`` in names are now
+  accepted instead of causing a :exc:`~http.cookies.CookieError` and 500 errors. Additionally,
+  cookies with mismatched quotes in values are now parsed correctly, and quoted cookie
+  values are now handled consistently whether or not they include special attributes
+  like ``Domain``. Also fixed :class:`~aiohttp.CookieJar` to ensure shared cookies (domain="", path="")
+  respect the ``quote_cookie`` parameter, making cookie quoting behavior consistent for
+  all cookies -- by :user:`bdraco`.
+
+
+  *Related issues and pull requests on GitHub:*
+  :issue:`2683`, :issue:`5397`, :issue:`7993`, :issue:`11112`.
+
+
+
+- Fixed an issue where cookies with duplicate names but different domains or paths
+  were lost when updating the cookie jar. The :class:`~aiohttp.ClientSession`
+  cookie jar now correctly stores all cookies even if they have the same name but
+  different domain or path, following the :rfc:`6265#section-5.3` storage model -- by :user:`bdraco`.
+
+  Note that :attr:`ClientResponse.cookies <aiohttp.ClientResponse.cookies>` returns
+  a :class:`~http.cookies.SimpleCookie` which uses the cookie name as a key, so
+  only the last cookie with each name is accessible via this interface. All cookies
+  can be accessed via :meth:`ClientResponse.headers.getall('Set-Cookie')
+  <multidict.MultiDictProxy.getall>` if needed.
+
+
+  *Related issues and pull requests on GitHub:*
+  :issue:`4486`, :issue:`11105`, :issue:`11106`.
+
+
+
+
+Miscellaneous internal changes
+------------------------------
+
+- Avoided creating closed futures in ``ResponseHandler`` that will never be awaited -- by :user:`bdraco`.
+
+
+  *Related issues and pull requests on GitHub:*
+  :issue:`11107`.
+
+
+
+- Downgraded the logging level for connector close errors from ERROR to DEBUG, as these are expected behavior with TLS 1.3 connections -- by :user:`bdraco`.
+
+
+  *Related issues and pull requests on GitHub:*
+  :issue:`11114`.
+
+
+
+
+----
+
+
 3.12.6 (2025-05-31)
 ===================
 
diff --git a/CHANGES/11105.bugfix.rst b/CHANGES/11105.bugfix.rst
deleted file mode 100644
index 33578aa7a95..00000000000
--- a/CHANGES/11105.bugfix.rst
+++ /dev/null
@@ -1,10 +0,0 @@
-Fixed an issue where cookies with duplicate names but different domains or paths
-were lost when updating the cookie jar. The :class:`~aiohttp.ClientSession`
-cookie jar now correctly stores all cookies even if they have the same name but
-different domain or path, following the :rfc:`6265#section-5.3` storage model -- by :user:`bdraco`.
-
-Note that :attr:`ClientResponse.cookies <aiohttp.ClientResponse.cookies>` returns
-a :class:`~http.cookies.SimpleCookie` which uses the cookie name as a key, so
-only the last cookie with each name is accessible via this interface. All cookies
-can be accessed via :meth:`ClientResponse.headers.getall('Set-Cookie')
-<multidict.MultiDictProxy.getall>` if needed.
diff --git a/CHANGES/11106.bugfix.rst b/CHANGES/11106.bugfix.rst
deleted file mode 120000
index 3e5efb0f3f3..00000000000
--- a/CHANGES/11106.bugfix.rst
+++ /dev/null
@@ -1 +0,0 @@
-11105.bugfix.rst
\ No newline at end of file
diff --git a/CHANGES/11107.misc.rst b/CHANGES/11107.misc.rst
deleted file mode 100644
index 37ac4622bd9..00000000000
--- a/CHANGES/11107.misc.rst
+++ /dev/null
@@ -1 +0,0 @@
-Avoided creating closed futures in ``ResponseHandler`` that will never be awaited -- by :user:`bdraco`.
diff --git a/CHANGES/11112.bugfix.rst b/CHANGES/11112.bugfix.rst
deleted file mode 100644
index 6edea1c9b23..00000000000
--- a/CHANGES/11112.bugfix.rst
+++ /dev/null
@@ -1,8 +0,0 @@
-Fixed cookie parsing to be more lenient when handling cookies with special characters
-in names or values. Cookies with characters like ``{``, ``}``, and ``/`` in names are now
-accepted instead of causing a :exc:`~http.cookies.CookieError` and 500 errors. Additionally,
-cookies with mismatched quotes in values are now parsed correctly, and quoted cookie
-values are now handled consistently whether or not they include special attributes
-like ``Domain``. Also fixed :class:`~aiohttp.CookieJar` to ensure shared cookies (domain="", path="")
-respect the ``quote_cookie`` parameter, making cookie quoting behavior consistent for
-all cookies -- by :user:`bdraco`.
diff --git a/CHANGES/11114.misc.rst b/CHANGES/11114.misc.rst
deleted file mode 100644
index 2fcb1468c67..00000000000
--- a/CHANGES/11114.misc.rst
+++ /dev/null
@@ -1 +0,0 @@
-Downgraded the logging level for connector close errors from ERROR to DEBUG, as these are expected behavior with TLS 1.3 connections -- by :user:`bdraco`.
diff --git a/CHANGES/2683.bugfix.rst b/CHANGES/2683.bugfix.rst
deleted file mode 120000
index fac3861027d..00000000000
--- a/CHANGES/2683.bugfix.rst
+++ /dev/null
@@ -1 +0,0 @@
-11112.bugfix.rst
\ No newline at end of file
diff --git a/CHANGES/4486.bugfix.rst b/CHANGES/4486.bugfix.rst
deleted file mode 120000
index 3e5efb0f3f3..00000000000
--- a/CHANGES/4486.bugfix.rst
+++ /dev/null
@@ -1 +0,0 @@
-11105.bugfix.rst
\ No newline at end of file
diff --git a/CHANGES/5397.bugfix.rst b/CHANGES/5397.bugfix.rst
deleted file mode 120000
index fac3861027d..00000000000
--- a/CHANGES/5397.bugfix.rst
+++ /dev/null
@@ -1 +0,0 @@
-11112.bugfix.rst
\ No newline at end of file
diff --git a/CHANGES/7993.bugfix.rst b/CHANGES/7993.bugfix.rst
deleted file mode 120000
index fac3861027d..00000000000
--- a/CHANGES/7993.bugfix.rst
+++ /dev/null
@@ -1 +0,0 @@
-11112.bugfix.rst
\ No newline at end of file