You are viewing a plain text version of this content. The canonical link for it is here.

Posted to cvs@httpd.apache.org by co...@apache.org on 2014/12/09 02:55:52 UTC

svn commit: r1643967 - /httpd/httpd/trunk/CHANGES

Author: covener
Date: Tue Dec  9 01:55:52 2014
New Revision: 1643967

URL: http://svn.apache.org/r1643967
Log:

backported in r1642861

Modified:
    httpd/httpd/trunk/CHANGES

Modified: httpd/httpd/trunk/CHANGES
URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/CHANGES?rev=1643967&r1=1643966&r2=1643967&view=diff
==============================================================================
--- httpd/httpd/trunk/CHANGES [utf-8] (original)
+++ httpd/httpd/trunk/CHANGES [utf-8] Tue Dec  9 01:55:52 2014
@@ -10,11 +10,6 @@ Changes with Apache 2.5.0
   *) ap_expr: Add filemod function for checking file modification dates
      [Daniel Gruno]
      
-  *) SECURITY: CVE-2014-8109 (cve.mitre.org)
-     mod_lua: Fix handling of the Require line when a LuaAuthzProvider is
-     used in multiple Require directives with different arguments.
-     PR57204 [Edward Lu <Chaosed0 gmail.com>]
-
   *) core: Add CGIPassAuth directive to control whether HTTP authorization
      headers are passed to scripts as CGI variables.  PR 56855.  [Jeff 
      Trawick]