move SECURITY to top

author Eric Covener <covener@apache.org>

Tue, 12 May 2009 13:23:01 +0000 (13:23 +0000)

committer Eric Covener <covener@apache.org>

Tue, 12 May 2009 13:23:01 +0000 (13:23 +0000)
author Eric Covener <covener@apache.org>
Tue, 12 May 2009 13:23:01 +0000 (13:23 +0000)
committer Eric Covener <covener@apache.org>
Tue, 12 May 2009 13:23:01 +0000 (13:23 +0000)
diff --git a/CHANGES b/CHANGES

index c57757aabf55e45bff435c0c3578f346a21b01d3..f1cc314447453588166196e11cd3e3fb9880c373 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -1,6 +1,12 @@
                                                           -*- coding: utf-8 -*-
  Changes with Apache 2.2.12
  
+  *) SECURITY: CVE-2009-1195 (cve.mitre.org)
+     Prevent the "Includes" Option from being enabled in an .htaccess 
+     file if the AllowOverride restrictions do not permit it.
+     [Jonathan Peatfield <j.s.peatfield damtp.cam.ac.uk>, Joe Orton,
+      Ruediger Pluem]
+
    *) SECURITY: CVE-2009-1191 (cve.mitre.org)
       mod_proxy_ajp: Avoid delivering content from a previous request which
       failed to send a request body. PR 46949 [Ruediger Pluem]
@@ -15,12 +21,6 @@ Changes with Apache 2.2.12
    *) mod_rewrite: When evaluating a proxy rule in directory context, do
       escape the filename by default. PR 46428 [Joe Orton]
  
-  *) SECURITY: CVE-2009-1195 (cve.mitre.org)
-     Prevent the "Includes" Option from being enabled in an .htaccess 
-     file if the AllowOverride restrictions do not permit it.
-     [Jonathan Peatfield <j.s.peatfield damtp.cam.ac.uk>, Joe Orton,
-      Ruediger Pluem]
-
    *) mod_proxy_ajp: Check more strictly that the backend follows the AJP
       protocol. [Mladen Turk]
author	Eric Covener <covener@apache.org>
	Tue, 12 May 2009 13:23:01 +0000 (13:23 +0000)
committer	Eric Covener <covener@apache.org>
	Tue, 12 May 2009 13:23:01 +0000 (13:23 +0000)