propose errordoc 400 CVE, switch another vote syntax

author Eric Covener <covener@apache.org>

Thu, 5 Mar 2015 02:34:42 +0000 (02:34 +0000)

committer Eric Covener <covener@apache.org>

Thu, 5 Mar 2015 02:34:42 +0000 (02:34 +0000)
author Eric Covener <covener@apache.org>
Thu, 5 Mar 2015 02:34:42 +0000 (02:34 +0000)
committer Eric Covener <covener@apache.org>
Thu, 5 Mar 2015 02:34:42 +0000 (02:34 +0000)
diff --git a/STATUS b/STATUS

index 6fce26b49490217893357c871bd43bccb3e2bd7d..81eb54efa95617589cdf664d08866942c07af7b7 100644 (file)
--- a/STATUS
+++ b/STATUS
@@ -255,8 +255,15 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
       sized 664 byte array per merge to a hash table.
       trunk patch: http://svn.apache.org/r1661448
       2.4.x patch: http://people.apache.org/~minfrin/httpd-core-errordocument24-3.patch
-     minfrin: +1
+     +1: minfrin
  
+  *) SECURITY: CVE-2015-0253 (cve.mitre.org)
+     core: Fix a crash introduced in with ErrorDocument 400 pointing
+     to a local URL-path with the INCLUDES filter active, introduced
+     in 2.4.11. PR 57531. [Yann Ylavic]
+     trunk patch: http://svn.apache.org/r1664205
+     2.4.x patch: trunk works
+     +1 covener
  
  OTHER PROPOSALS
author	Eric Covener <covener@apache.org>
	Thu, 5 Mar 2015 02:34:42 +0000 (02:34 +0000)
committer	Eric Covener <covener@apache.org>
	Thu, 5 Mar 2015 02:34:42 +0000 (02:34 +0000)