format CVE entries

author Eric Covener <covener@apache.org>

Tue, 6 Dec 2016 13:54:05 +0000 (13:54 +0000)

committer Eric Covener <covener@apache.org>

Tue, 6 Dec 2016 13:54:05 +0000 (13:54 +0000)
author Eric Covener <covener@apache.org>
Tue, 6 Dec 2016 13:54:05 +0000 (13:54 +0000)
committer Eric Covener <covener@apache.org>
Tue, 6 Dec 2016 13:54:05 +0000 (13:54 +0000)
diff --git a/CHANGES b/CHANGES

index 9c4ce2ed9ce17ff37bb2f555e3eca9dd7d09dc1e..23ba1c975808cc27c0569525dc77e8f54b838d4c 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -2,12 +2,15 @@
  
  Changes with Apache 2.4.24
  
-  *) mod_http2: CVE-2016-8740: Mitigate DoS memory exhaustion via endless
+
+  *) SECURITY: CVE-2016-8740 (cve.mitre.org)
+     mod_http2: Mitigate DoS memory exhaustion via endless
       CONTINUATION frames.
       [Naveen Tiwari <naveen.tiwari@asu.edu> and CDF/SEFCOM at Arizona State
       University, Stefan Eissing]
  
-  *) core: CVE-2016-5387: Mitigate [f]cgi "httpoxy" issues.
+  *) SECURITY: CVE-2016-5387 (cve.mitre.org)
+     core: Mitigate [f]cgi "httpoxy" issues.
       [Dominic Scheirlinck <dominic vendhq.com>, Yann Ylavic]
  
    *) Enforce http request grammer corresponding to RFC7230 for request lines
author	Eric Covener <covener@apache.org>
	Tue, 6 Dec 2016 13:54:05 +0000 (13:54 +0000)
committer	Eric Covener <covener@apache.org>
	Tue, 6 Dec 2016 13:54:05 +0000 (13:54 +0000)