Mention the apr-util fix here too.

author Joe Orton <jorton@apache.org>

Wed, 15 Sep 2004 12:00:17 +0000 (12:00 +0000)

committer Joe Orton <jorton@apache.org>

Wed, 15 Sep 2004 12:00:17 +0000 (12:00 +0000)
author Joe Orton <jorton@apache.org>
Wed, 15 Sep 2004 12:00:17 +0000 (12:00 +0000)
committer Joe Orton <jorton@apache.org>
Wed, 15 Sep 2004 12:00:17 +0000 (12:00 +0000)
diff --git a/CHANGES b/CHANGES

index d043909616aa758126fb3935a67019375e701bc0..01004e1c89937d381a2b8b02a29cac37ca1a3e43 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -1,5 +1,9 @@
  Changes with Apache 2.0.51
  
+  *) SECURITY: CAN-2004-0786 (cve.mitre.org)
+     Fix an input validation issue in apr-util which could be
+     triggered by malformed IPv6 literal addresses.  [Joe Orton]
+
    *) SECURITY: CAN-2004-0747 (cve.mitre.org)
       Fix buffer overflow in expansion of environment variables in
       configuration file parsing.  [André Malo]
author	Joe Orton <jorton@apache.org>
	Wed, 15 Sep 2004 12:00:17 +0000 (12:00 +0000)
committer	Joe Orton <jorton@apache.org>
	Wed, 15 Sep 2004 12:00:17 +0000 (12:00 +0000)