You are viewing a plain text version of this content. The canonical link for it is here.

Posted to cvs@httpd.apache.org by co...@apache.org on 2017/06/19 17:04:48 UTC

svn commit: r1799236 - /httpd/httpd/branches/2.2.x/CHANGES

Author: covener
Date: Mon Jun 19 17:04:48 2017
New Revision: 1799236

URL: http://svn.apache.org/viewvc?rev=1799236&view=rev
Log:
attribution

Modified:
    httpd/httpd/branches/2.2.x/CHANGES

Modified: httpd/httpd/branches/2.2.x/CHANGES
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?rev=1799236&r1=1799235&r2=1799236&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/CHANGES [utf-8] (original)
+++ httpd/httpd/branches/2.2.x/CHANGES [utf-8] Mon Jun 19 17:04:48 2017
@@ -7,6 +7,7 @@ Changes with Apache 2.2.33
      the end of its input string. By maliciously crafting a sequence of
      request headers, an attacker may be able to cause a segmentation fault,
      or to force ap_find_token() to return an incorrect value.
+     [Jacob Champion]
 
   *) SECURITY: CVE-2017-3169 (cve.mitre.org)
      mod_ssl may dereference a NULL pointer when third-party modules call