httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From m..@apache.org
Subject svn commit: r1403734 - /httpd/httpd/branches/2.2.x/CHANGES
Date Tue, 30 Oct 2012 15:16:17 GMT
Author: mjc
Date: Tue Oct 30 15:16:16 2012
New Revision: 1403734

URL: http://svn.apache.org/viewvc?rev=1403734&view=rev
Log:
Retrospectively assign a CVE as this issue had a similar
affect to CVE-2011-3348

Modified:
    httpd/httpd/branches/2.2.x/CHANGES

Modified: httpd/httpd/branches/2.2.x/CHANGES
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/CHANGES?rev=1403734&r1=1403733&r2=1403734&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/CHANGES [utf-8] (original)
+++ httpd/httpd/branches/2.2.x/CHANGES [utf-8] Tue Oct 30 15:16:16 2012
@@ -120,7 +120,8 @@ Changes with Apache 2.2.22
      when no custom ErrorDocument is specified for status code 400.
      [Eric Covener]
 
-  *) mod_proxy_ajp: Try to prevent a single long request from marking a worker
+  *) SECURITY: CVE-2012-4557 (cve.mitre.org)
+     mod_proxy_ajp: Try to prevent a single long request from marking a worker
      in error. [Jean-Frederic Clere]
 
   *) config: Update the default mod_ssl configuration: Disable SSLv2, only



Mime
View raw message