diff options
| author | Jeff Trawick <trawick@apache.org> | 2011-09-13 00:41:55 +0000 |
|---|---|---|
| committer | Jeff Trawick <trawick@apache.org> | 2011-09-13 00:41:55 +0000 |
| commit | 51b110a2922b5396eddd8551380a3ce57fb5c8e5 (patch) | |
| tree | 8ad5a197855a38e17732166025dc022ee7d2e290 | |
| parent | e8556ccd9e73c954c1212a4aa4a7ed7d11b23607 (diff) | |
| download | apr-51b110a2922b5396eddd8551380a3ce57fb5c8e5.tar.gz | |
add entry for CVE-2011-0419/apr_fnmatch() issue
see r1128717 for the matching code
git-svn-id: https://svn.apache.org/repos/asf/apr/apr/branches/0.9.x@1169990 13f79535-47bb-0310-9956-ffa450edef68
| -rw-r--r-- | CHANGES | 5 |
1 files changed, 5 insertions, 0 deletions
@@ -1,6 +1,11 @@ -*- coding: utf-8 -*- Changes with APR 0.9.20 + *) Security: CVE-2011-0419 + Reimplement apr_fnmatch() from scratch using a non-recursive + algorithm; now has improved compliance with the fnmatch() spec. + [William Rowe] + *) Updated config.guess and config.sub. [Rainer Jung] *) Fix flag character '#' in combination with format character 'x' in |