Commit 114abe2f authored by Yann Ylavic's avatar Yann Ylavic
Browse files

Restore "Changes with Apache 2.4.38" header. 

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1853203 13f79535-47bb-0310-9956-ffa450edef68
parent 89c58629

CHANGES

+2 −0
Original line number Diff line number Diff line
@@ -5,6 +5,8 @@ Changes with Apache 2.4.39 
     configuration (SSLFIPS on) and not active by default in OpenSSL.

     PR 63136. [Yann Ylavic]



Changes with Apache 2.4.38



  *) SECURITY: CVE-2018-17199 (cve.mitre.org)

     mod_session: mod_session_cookie does not respect expiry time allowing

     sessions to be reused.  [Hank Ibell]