From: Jim Jagielski <jim@apache.org>
Date: Tue, 10 Jun 2008 19:32:30 +0000 (+0000)
Subject: in 2.2.9
X-Git-Tag: 2.3.0~504
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=416f8ec21a6194aada64650f3a830ac2808cc7aa;p=thirdparty%2Fapache%2Fhttpd.git

in 2.2.9


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@666291 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/CHANGES b/CHANGES
index 9dccaf348da..8b07da76d5f 100644
--- a/CHANGES
+++ b/CHANGES
@@ -2,12 +2,6 @@
 Changes with Apache 2.3.0
 [ When backported to 2.2.x, remove entry from this file ]
 
-  *) SECURITY: CVE-2008-2364 (cve.mitre.org)
-     mod_proxy_http: Better handling of excessive interim responses
-     from origin server to prevent potential denial of service and high
-     memory usage. Reported by Ryujiro Shibuya. [Ruediger Pluem,
-     Joe Orton, Jim Jagielski]
-
   *) mod_proxy_http: Do not forward requests with 'Expect: 100-continue' to
      known HTTP/1.0 servers. Return 'Expectation failed' (417) instead.
      [Ruediger Pluem]