]> granicus.if.org Git - apache/commitdiff
projects / apache / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: efca23e)
Propose showstopper fix for httpoxy mitigation
authorWilliam A. Rowe Jr <wrowe@apache.org>
Tue, 26 Jul 2016 16:50:18 +0000 (16:50 +0000)
committerWilliam A. Rowe Jr <wrowe@apache.org>
Tue, 26 Jul 2016 16:50:18 +0000 (16:50 +0000)
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1754158 13f79535-47bb-0310-9956-ffa450edef68

STATUS patch | blob | history

diff --git a/STATUS b/STATUS
index 064edc8e2ec0dad9c40c0a4bf1bb0e8fa61bd4e5..14016e86aecd21f23166533ccfd429c1a54f8f26 100644 (file)
--- a/STATUS
+++ b/STATUS
@@ -113,6 +113,13 @@ CURRENT RELEASE NOTES:
 
 RELEASE SHOWSTOPPERS:
 
+  *) core: CVE-2016-5387: Mitigate [f]cgi "httpoxy" issues
+      Trunk version of patch:
+         http://svn.apache.org/viewvc?rev=1753228&view=rev
+         http://svn.apache.org/viewvc?rev=1753229&view=rev
+      Backport version for 2.4.x of patch:
+         Trunk version of patch works (modulo CHANGES)
+      +1: wrowe
 
 PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
   [ start all new proposals below, under PATCHES PROPOSED. ]
Unnamed repository; edit this file 'description' to name the repository.