From: Eric Covener <covener@apache.org>
Date: Tue, 9 Dec 2014 01:55:52 +0000 (+0000)
Subject: backported in r1642861
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=951e61a06dd1e226d3f7dc553cf9c0be0daf4d3e;p=thirdparty%2Fapache%2Fhttpd.git

backported in r1642861


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1643967 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/CHANGES b/CHANGES
index 1203ecb7b7d..3c16fb59adc 100644
--- a/CHANGES
+++ b/CHANGES
@@ -10,11 +10,6 @@ Changes with Apache 2.5.0
   *) ap_expr: Add filemod function for checking file modification dates
      [Daniel Gruno]
      
-  *) SECURITY: CVE-2014-8109 (cve.mitre.org)
-     mod_lua: Fix handling of the Require line when a LuaAuthzProvider is
-     used in multiple Require directives with different arguments.
-     PR57204 [Edward Lu <Chaosed0 gmail.com>]
-
   *) core: Add CGIPassAuth directive to control whether HTTP authorization
      headers are passed to scripts as CGI variables.  PR 56855.  [Jeff 
      Trawick]