diff options
author | Stefan Bühler <stbuehler@web.de> | 2013-11-13 17:18:39 +0000 |
---|---|---|
committer | Stefan Bühler <stbuehler@web.de> | 2013-11-13 17:18:39 +0000 |
commit | c8fbc16985e95f14c2a269073324f9b455584c6e (patch) | |
tree | 060c720c485569b56aa6c6843add4b027cdd0eea /NEWS | |
parent | 18869bcfed660712252f037c3ee568a58f6e98cc (diff) | |
download | lighttpd-git-c8fbc16985e95f14c2a269073324f9b455584c6e.tar.gz |
[ssl] fix regression from CVE-2013-4508 (client-cert sessions were broken)
From: Stefan Bühler <stbuehler@web.de>
git-svn-id: svn://svn.lighttpd.net/lighttpd/branches/lighttpd-1.4.x@2925 152afb58-edef-0310-8abb-c4023f1b3aa9
Diffstat (limited to 'NEWS')
-rw-r--r-- | NEWS | 1 |
1 files changed, 1 insertions, 0 deletions
@@ -11,6 +11,7 @@ NEWS * [stat-cache] FAM: fix use after free (CVE-2013-4560) * [stat-cache] fix FAM cleanup/fdevent handling * [core] check success of setuid,setgid,setgroups (CVE-2013-4559) + * [ssl] fix regression from CVE-2013-4508 (client-cert sessions were broken) - 1.4.33 - 2013-09-27 * mod_fastcgi: fix mix up of "mode" => "authorizer" in other fastcgi configs (fixes #2465, thx peex) |