From: Jim Jagielski <jim@apache.org>
Date: Fri, 26 Sep 2014 11:01:27 +0000 (+0000)
Subject: backported
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=7f9cad68b175c4dca1326fa26c30a30aa9474aab;p=thirdparty%2Fapache%2Fhttpd.git

backported


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1627750 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/CHANGES b/CHANGES
index 0e428aa9251..bd95643ffc5 100644
--- a/CHANGES
+++ b/CHANGES
@@ -5,19 +5,12 @@ Changes with Apache 2.5.0
      Leading 0 could be erroneously considered as an octal value. PR 56598.
      [Chris Card <ctcard hotmail com>]
   
-  *) SECURITY: CVE-2014-3581 (cve.mitre.org)
-     mod_cache: Avoid a crash when Content-Type has an empty value. PR56924.
-     [Mark Montague <mark catseye.org>, Jan Kaluza]
-
   *) mod_proxy: Now allow for 191 character worker names, with non-fatal
      errors if name is truncated. PR53218. [Jim Jagielski]
 
   *) mod_ssl: Add optional function "ssl_get_tls_cb" to allow support
      for channel bindings.  [Simo Sorce <simo redhat.com>]
 
-  *) mod_cache: Avoid sending 304 responses during failed revalidations
-     PR56881. [Eric Covener]
-
   *) core: Avoid useless warning message when parsing a section guarded by
      <IfDefine foo> if $(foo) is used within the section.
      PR 56858 [Christophe Jaillet]