* Follow the standard CHANGES format for security changes.

author Ruediger Pluem <rpluem@apache.org>

Mon, 14 Sep 2009 21:30:32 +0000 (21:30 +0000)

committer Ruediger Pluem <rpluem@apache.org>

Mon, 14 Sep 2009 21:30:32 +0000 (21:30 +0000)
author Ruediger Pluem <rpluem@apache.org>
Mon, 14 Sep 2009 21:30:32 +0000 (21:30 +0000)
committer Ruediger Pluem <rpluem@apache.org>
Mon, 14 Sep 2009 21:30:32 +0000 (21:30 +0000)
diff --git a/CHANGES b/CHANGES

index f38868fc326408d20e6e29e01bd8ae985100bb3a..93b8494e11a47301675cca5d622c8cabac5d8be9 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -2,10 +2,12 @@
  
  Changes with Apache 2.3.3
  
-  *) CVE-2009-3095: mod_proxy_ftp sanity check authn credentials.
+  *) SECURITY: CVE-2009-3095 (cve.mitre.org)
+     mod_proxy_ftp: sanity check authn credentials.
       [Stefan Fritsch <sf fritsch.de>, Joe Orton]
  
-  *) CVE-2009-3094: mod_proxy_ftp NULL pointer dereference on error paths.
+  *) SECURITY: CVE-2009-3094 (cve.mitre.org)
+     mod_proxy_ftp: NULL pointer dereference on error paths.
       [Stefan Fritsch <sf fritsch.de>, Joe Orton]
  
    *) mod_dav: Allow other modules to add things to the DAV or Allow headers
author	Ruediger Pluem <rpluem@apache.org>
	Mon, 14 Sep 2009 21:30:32 +0000 (21:30 +0000)
committer	Ruediger Pluem <rpluem@apache.org>
	Mon, 14 Sep 2009 21:30:32 +0000 (21:30 +0000)