Return-Path: Delivered-To: apmail-httpd-cvs-archive@www.apache.org Received: (qmail 96756 invoked from network); 14 Sep 2009 21:31:11 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 14 Sep 2009 21:31:11 -0000 Received: (qmail 26196 invoked by uid 500); 14 Sep 2009 21:31:11 -0000 Delivered-To: apmail-httpd-cvs-archive@httpd.apache.org Received: (qmail 26132 invoked by uid 500); 14 Sep 2009 21:31:11 -0000 Mailing-List: contact cvs-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: dev@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list cvs@httpd.apache.org Received: (qmail 26123 invoked by uid 99); 14 Sep 2009 21:31:11 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 14 Sep 2009 21:31:11 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=10.0 tests=ALL_TRUSTED X-Spam-Check-By: apache.org Received: from [140.211.11.4] (HELO eris.apache.org) (140.211.11.4) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 14 Sep 2009 21:31:02 +0000 Received: by eris.apache.org (Postfix, from userid 65534) id 9AEE923888DA; Mon, 14 Sep 2009 21:30:41 +0000 (UTC) Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Subject: svn commit: r814866 - /httpd/httpd/trunk/CHANGES Date: Mon, 14 Sep 2009 21:30:36 -0000 To: cvs@httpd.apache.org From: rpluem@apache.org X-Mailer: svnmailer-1.0.8 Message-Id: <20090914213041.9AEE923888DA@eris.apache.org> X-Virus-Checked: Checked by ClamAV on apache.org Author: rpluem Date: Mon Sep 14 21:30:32 2009 New Revision: 814866 URL: http://svn.apache.org/viewvc?rev=814866&view=rev Log: * Follow the standard CHANGES format for security changes. Modified: httpd/httpd/trunk/CHANGES Modified: httpd/httpd/trunk/CHANGES URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/CHANGES?rev=814866&r1=814865&r2=814866&view=diff ============================================================================== --- httpd/httpd/trunk/CHANGES [utf-8] (original) +++ httpd/httpd/trunk/CHANGES [utf-8] Mon Sep 14 21:30:32 2009 @@ -2,10 +2,12 @@ Changes with Apache 2.3.3 - *) CVE-2009-3095: mod_proxy_ftp sanity check authn credentials. + *) SECURITY: CVE-2009-3095 (cve.mitre.org) + mod_proxy_ftp: sanity check authn credentials. [Stefan Fritsch , Joe Orton] - *) CVE-2009-3094: mod_proxy_ftp NULL pointer dereference on error paths. + *) SECURITY: CVE-2009-3094 (cve.mitre.org) + mod_proxy_ftp: NULL pointer dereference on error paths. [Stefan Fritsch , Joe Orton] *) mod_dav: Allow other modules to add things to the DAV or Allow headers