You are viewing a plain text version of this content. The canonical link for it is here.
Posted to cvs@httpd.apache.org by rp...@apache.org on 2009/07/20 15:48:42 UTC
svn commit: r795840 - /httpd/httpd/branches/2.2.x/CHANGES
Author: rpluem
Date: Mon Jul 20 13:48:42 2009
New Revision: 795840
URL: http://svn.apache.org/viewvc?rev=795840&view=rev
Log:
* SECURITY first and remove BOM.
Modified:
httpd/httpd/branches/2.2.x/CHANGES
Modified: httpd/httpd/branches/2.2.x/CHANGES
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?rev=795840&r1=795839&r2=795840&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/CHANGES [utf-8] (original)
+++ httpd/httpd/branches/2.2.x/CHANGES [utf-8] Mon Jul 20 13:48:42 2009
@@ -1,9 +1,6 @@
- -*- coding: utf-8 -*-
+ -*- coding: utf-8 -*-
Changes with Apache 2.2.12
- *) mod_include: fix potential segfault when handling back references
- on an empty SSI variable. [Ruediger Pluem, Lars Eilebrecht, Nick Kew]
-
*) SECURITY: CVE-2009-1891 (cve.mitre.org)
Fix a potential Denial-of-Service attack against mod_deflate or other
modules, by forcing the server to consume CPU time in compressing a
@@ -30,6 +27,9 @@
different security issues which may affect particular configurations
and third-party modules.
+ *) mod_include: fix potential segfault when handling back references
+ on an empty SSI variable. [Ruediger Pluem, Lars Eilebrecht, Nick Kew]
+
*) mod_alias: check sanity in Redirect arguments.
PR 44729 [Sönke Tesch <st kino-fahrplan.de>, Jim Jagielski]