On Mon, Oct 5, 2009 at 4:15 PM, Graham Leggett <minf...@sharp.fm> wrote:
> minf...@apache.org wrote: > > > Author: minfrin > > Date: Mon Oct 5 20:11:21 2009 > > New Revision: 821989 > > > > URL: http://svn.apache.org/viewvc?rev=821989&view=rev > > Log: > > Prepare the announcement for httpd v2.2.14. > > SvnPubSub works great :) > > Would it be possible for someone to eyeball these changes and make sure > I didn't miss anything out or break anything? > The security aspect of the bundling of APR and APR-util needs to be tweaked. Does this look right? Index: dist/Announcement2.2.html =================================================================== --- dist/Announcement2.2.html (revision 822019) +++ dist/Announcement2.2.html (working copy) @@ -21,8 +21,8 @@ pleased to announce the release of version 2.2.14 of the Apache HTTP Server ("Apache"). This version of Apache is principally a security and bug fix release. Notably, this version bundles the APR Library - version 1.3.9 and APR Utility Library version 1.3.9, which address - a security concern which may be triggered by some third party modules. + version 1.3.9, which addresses a security concern with the Prefork + and Event MPMs on Solaris 10. </p> <p> Index: dist/Announcement2.2.txt =================================================================== --- dist/Announcement2.2.txt (revision 822019) +++ dist/Announcement2.2.txt (working copy) @@ -4,8 +4,8 @@ pleased to announce the release of version 2.2.14 of the Apache HTTP Server ("Apache"). This version of Apache is principally a security and bug fix release. Notably, this version bundles the APR Library - version 1.3.9 and APR Utility Library version 1.3.9, which address - a security concern which may be triggered by some third party modules. + version 1.3.9, which addresses a security concern with the Prefork + and Event MPMs on Solaris 10. We consider this release to be the best version of Apache available, and encourage users of all prior versions to upgrade.