httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From j..@apache.org
Subject svn commit: r1610736 - /httpd/httpd/branches/2.4.x/STATUS
Date Tue, 15 Jul 2014 16:07:44 GMT
Author: jim
Date: Tue Jul 15 16:07:44 2014
New Revision: 1610736

URL: http://svn.apache.org/r1610736
Log:
promote

Modified:
    httpd/httpd/branches/2.4.x/STATUS

Modified: httpd/httpd/branches/2.4.x/STATUS
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/STATUS?rev=1610736&r1=1610735&r2=1610736&view=diff
==============================================================================
--- httpd/httpd/branches/2.4.x/STATUS (original)
+++ httpd/httpd/branches/2.4.x/STATUS Tue Jul 15 16:07:44 2014
@@ -96,22 +96,16 @@ CURRENT RELEASE NOTES:
 
 RELEASE SHOWSTOPPERS:
 
-   * mod_proxy Connection handling crasher, CVE-2014-0117
-   trunk patch: http://svn.apache.org/r1610674
-   ALTERNATIVE #1
-   2.4.x patch: http://people.apache.org/~jorton/CVE-2014-0117-simple.patch
-   +1: jorton, jim, trawick
 
-   ALTERNATIVE #2
-   2.4.x patch: http://people.apache.org/~jorton/2.4.x-CVE-2014-0117_v2.patch (ylavic)
-   +1: jorton, ylavic
-   -0.99: jim (not enough time for a serious review for inclusion in 2.4.10)
-   ylavic: works here, and checking RFC compliance if the Connection header
-           looks quite important to me.
 
 PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
   [ start all new proposals below, under PATCHES PROPOSED. ]
 
+   * mod_proxy Connection handling crasher, CVE-2014-0117
+   trunk patch: http://svn.apache.org/r1610674
+   ALTERNATIVE #1
+   2.4.x patch: http://people.apache.org/~jorton/CVE-2014-0117-simple.patch
+   +1: jorton, jim, trawick
 
 
 PATCHES PROPOSED TO BACKPORT FROM TRUNK:



Mime
View raw message