]> granicus.if.org Git - apache/commitdiff
projects / apache / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 7d2f341)
* Added missing CVE number
authorRuediger Pluem <rpluem@apache.org>
Sat, 29 Dec 2007 09:26:42 +0000 (09:26 +0000)
committerRuediger Pluem <rpluem@apache.org>
Sat, 29 Dec 2007 09:26:42 +0000 (09:26 +0000)
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@607403 13f79535-47bb-0310-9956-ffa450edef68

CHANGES patch | blob | history

diff --git a/CHANGES b/CHANGES
index c884cff2c6f1d35e240078008f27cf47b0132ebf..748f438277c48ad556a4b2eaab918404f2467c64 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -7,7 +7,8 @@ Changes with Apache 2.3.0
      a possible XSS attack caused by redirecting to other URLs. 
      Reported by SecurityReason.  [Mark Cox, Joe Orton]
 
-  *) mod_proxy_balancer: Correctly escape the worker route and the worker
+  *) SECURITY: CVE-2007-6421 (cve.mitre.org)
+     mod_proxy_balancer: Correctly escape the worker route and the worker
      redirect string in the HTML output of the balancer manager.
      Reported by SecurityReason. [Ruediger Pluem]
 
Unnamed repository; edit this file 'description' to name the repository.