reflect assignment of CVE-2010-0434

author Jeff Trawick <trawick@apache.org>

Wed, 3 Mar 2010 11:48:24 +0000 (11:48 +0000)

committer Jeff Trawick <trawick@apache.org>

Wed, 3 Mar 2010 11:48:24 +0000 (11:48 +0000)
author Jeff Trawick <trawick@apache.org>
Wed, 3 Mar 2010 11:48:24 +0000 (11:48 +0000)
committer Jeff Trawick <trawick@apache.org>
Wed, 3 Mar 2010 11:48:24 +0000 (11:48 +0000)
diff --git a/CHANGES b/CHANGES

index 4a249eb80148565df5a5279d7e52a47b73c8a168..1985cd6f439d975f7d97eb480c262e6ef28a1b29 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -23,7 +23,8 @@ Changes with Apache 2.2.15
       processing is completed, avoiding orphaned callback pointers.
       [Brett Gervasoni <brettg senseofsecurity.com>, Jeff Trawick]
  
-  *) Ensure each subrequest has a shallow copy of headers_in so that the
+  *) SECURITY: CVE-2010-0434 (cve.mitre.org)
+     Ensure each subrequest has a shallow copy of headers_in so that the
       parent request headers are not corrupted.  Elimiates a problematic
       optimization in the case of no request body.  PR 48359
       [Jake Scott, William Rowe, Ruediger Pluem]
author	Jeff Trawick <trawick@apache.org>
	Wed, 3 Mar 2010 11:48:24 +0000 (11:48 +0000)
committer	Jeff Trawick <trawick@apache.org>
	Wed, 3 Mar 2010 11:48:24 +0000 (11:48 +0000)