From: Jeff Trawick <trawick@apache.org>
Date: Wed, 3 Mar 2010 11:48:24 +0000 (+0000)
Subject: reflect assignment of CVE-2010-0434
X-Git-Tag: 2.2.16~121
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=17fee4f550c33c69c93f2ead65a3f658e8d29126;p=thirdparty%2Fapache%2Fhttpd.git

reflect assignment of CVE-2010-0434


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@918427 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/CHANGES b/CHANGES
index 4a249eb8014..1985cd6f439 100644
--- a/CHANGES
+++ b/CHANGES
@@ -23,7 +23,8 @@ Changes with Apache 2.2.15
      processing is completed, avoiding orphaned callback pointers.
      [Brett Gervasoni <brettg senseofsecurity.com>, Jeff Trawick]
 
-  *) Ensure each subrequest has a shallow copy of headers_in so that the
+  *) SECURITY: CVE-2010-0434 (cve.mitre.org)
+     Ensure each subrequest has a shallow copy of headers_in so that the
      parent request headers are not corrupted.  Elimiates a problematic
      optimization in the case of no request body.  PR 48359
      [Jake Scott, William Rowe, Ruediger Pluem]