diff --git a/CHANGELOG.md b/CHANGELOG.md
index 4f3e345..0caeade 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,4 +1,8 @@
+* BUGFIX
+  * fix init error if DB not available
 * ENHANCEMENT
   * remove stdout redirect for the supercronic main process
   * remove log redirect from cron scripts
   * remove `FRESHRSS_LIMITS_MAX_INACTIVITY`
+* SECURITY
+  * update PHP to address [CVE-2019-11043](https://de.tenable.com/blog/cve-2019-11043-vulnerability-in-php-fpm-could-lead-to-remote-code-execution-on-nginx)
diff --git a/overlay/usr/local/bin/entrypoint.sh b/overlay/usr/local/bin/entrypoint.sh
index eea4768..73fa69d 100755
--- a/overlay/usr/local/bin/entrypoint.sh
+++ b/overlay/usr/local/bin/entrypoint.sh
@@ -23,6 +23,7 @@ if [ "${FRESHRSS_DEFAULT_USER}" ]; then
           *"username already taken"*) ;;
           *)
           echo $UCREATE
+          rm -rf "/var/www/app/data/users/$FRESHRSS_DEFAULT_USER"
           exit 1
           ;;
         esac