promote

author Jim Jagielski <jim@apache.org>

Tue, 6 Dec 2016 17:36:26 +0000 (17:36 +0000)

committer Jim Jagielski <jim@apache.org>

Tue, 6 Dec 2016 17:36:26 +0000 (17:36 +0000)
author Jim Jagielski <jim@apache.org>
Tue, 6 Dec 2016 17:36:26 +0000 (17:36 +0000)
committer Jim Jagielski <jim@apache.org>
Tue, 6 Dec 2016 17:36:26 +0000 (17:36 +0000)
diff --git a/STATUS b/STATUS

index a222632b05d2534b8b6fd594f722882c28a4ac95..28f9a289beb073b203a0853d6b47200df4ea8149 100644 (file)
--- a/STATUS
+++ b/STATUS
@@ -117,6 +117,14 @@ RELEASE SHOWSTOPPERS:
  PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
    [ start all new proposals below, under PATCHES PROPOSED. ]
  
+  *) SECURITY: CVE-2016-0736 (cve.mitre.org)
+     mod_session_crypto: Authenticate the session data/cookie with a
+     MAC (SipHash) to prevent deciphering or tampering from a padding
+     oracle attack.  [Yann Ylavic, Colm MacCarthaigh]
+     trunk patch: http://svn.apache.org/r1772812
+                  http://svn.apache.org/r1772813
+     2.4.x patch: trunk works (modulo CHANGES)
+     +1: ylavic, covener, jim
  
  
  PATCHES PROPOSED TO BACKPORT FROM TRUNK:
@@ -149,14 +157,6 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
       jailletc36: compatibility note missing in the XML file
       jim:        Will address during commit
  
-  *) SECURITY: CVE-2016-0736 (cve.mitre.org)
-     mod_session_crypto: Authenticate the session data/cookie with a
-     MAC (SipHash) to prevent deciphering or tampering from a padding
-     oracle attack.  [Yann Ylavic, Colm MacCarthaigh]
-     trunk patch: http://svn.apache.org/r1772812
-                  http://svn.apache.org/r1772813
-     2.4.x patch: trunk works (modulo CHANGES)
-     +1: ylavic, covener, jim
  
  
  PATCHES/ISSUES THAT ARE BEING WORKED
author	Jim Jagielski <jim@apache.org>
	Tue, 6 Dec 2016 17:36:26 +0000 (17:36 +0000)
committer	Jim Jagielski <jim@apache.org>
	Tue, 6 Dec 2016 17:36:26 +0000 (17:36 +0000)