You are viewing a plain text version of this content. The canonical link for it is here.

Posted to cvs@httpd.apache.org by jo...@apache.org on 2011/10/07 15:16:01 UTC

svn commit: r1180031 - /httpd/httpd/branches/2.0.x/STATUS

Author: jorton
Date: Fri Oct  7 13:16:01 2011
New Revision: 1180031

URL: http://svn.apache.org/viewvc?rev=1180031&view=rev
Log:
Backported.

Modified:
    httpd/httpd/branches/2.0.x/STATUS

Modified: httpd/httpd/branches/2.0.x/STATUS
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/STATUS?rev=1180031&r1=1180030&r2=1180031&view=diff
==============================================================================
--- httpd/httpd/branches/2.0.x/STATUS (original)
+++ httpd/httpd/branches/2.0.x/STATUS Fri Oct  7 13:16:01 2011
@@ -114,12 +114,6 @@ CURRENT RELEASE NOTES:
 
 RELEASE SHOWSTOPPERS:
 
-  * SECURITY (CVE-2011-3368): Prevent unintended pattern expansion in some
-    reverse proxy configurations by strictly validating the request-URI.
-    Trunk patch: http://svn.apache.org/viewvc?rev=1179239&view=rev
-    2.2.x patch: http://www.apache.org/dist/httpd/patches/apply_to_2.2.21/CVE-2011-3368.patch
-    +1: jim, rjung
-
   * byterange: Range of '0-' returns 206.
     Trunk patch: http://svn.apache.org/viewvc?view=revision&revision=1175980
                  http://svn.apache.org/viewvc?view=revision&revision=1175992