Skip to content
This repository has been archived by the owner on Jan 28, 2020. It is now read-only.

Commit

Permalink
NEWS file for release 0.11.1.
Browse files Browse the repository at this point in the history
  • Loading branch information
olavmo-sikt committed Mar 8, 2016
1 parent 803f689 commit 2f09cee
Showing 1 changed file with 14 additions and 1 deletion.
15 changes: 14 additions & 1 deletion NEWS
Original file line number Diff line number Diff line change
@@ -1,3 +1,16 @@
Version 0.11.1
---------------------------------------------------------------------------

Security fixes:

* [CVE-2016-2145] Fix DOS attack (Apache worker process crash) due to
incorrect error handling when reading POST data from client.

* [CVE-2016-2146] Fix DOS attack (Apache worker process crash /
resource exhaustion) due to missing size checks when reading
POST data.


Version 0.11.0
---------------------------------------------------------------------------

Expand Down Expand Up @@ -295,7 +308,7 @@ Version 0.2.1
---------------------------------------------------------------------------

* Make SAML authentication assertion and Lasso session available in the
environement.
environment.

Version 0.2.0
---------------------------------------------------------------------------
Expand Down

0 comments on commit 2f09cee

Please sign in to comment.