From: Jim Jagielski Date: Mon, 18 Feb 2013 20:06:30 +0000 (+0000) Subject: mod_ldap was CVE-2012-3499 X-Git-Tag: 2.4.4~4 X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=4abf74d83695aca87aa5341a3db35a5298692f7b;p=apache mod_ldap was CVE-2012-3499 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1447454 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/CHANGES b/CHANGES index 67fdc52d33..fc35685b0d 100644 --- a/CHANGES +++ b/CHANGES @@ -4,7 +4,7 @@ Changes with Apache 2.4.4 *) SECURITY: CVE-2012-3499 (cve.mitre.org) Various XSS flaws due to unescaped hostnames and URIs HTML output in - mod_info, mod_status, mod_impagemap, mod_proxy_balancer, and mod_proxy_ftp. + mod_info, mod_status, mod_impagemap, mod_ldap, and mod_proxy_ftp. [Jim Jagielski, Stefan Fritsch, Niels Heinen ] *) SECURITY: CVE-2012-4558 (cve.mitre.org)