You are viewing a plain text version of this content. The canonical link for it is here.

Posted to cvs@httpd.apache.org by tr...@apache.org on 2010/08/05 19:41:00 UTC

svn commit: r982705 - /httpd/httpd/branches/2.0.x/STATUS

Author: trawick
Date: Thu Aug  5 17:41:00 2010
New Revision: 982705

URL: http://svn.apache.org/viewvc?rev=982705&view=rev
Log:
get the CVE-2010-1452 fix in patches/apply_to_xxx into svn

Modified:
    httpd/httpd/branches/2.0.x/STATUS

Modified: httpd/httpd/branches/2.0.x/STATUS
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.0.x/STATUS?rev=982705&r1=982704&r2=982705&view=diff
==============================================================================
--- httpd/httpd/branches/2.0.x/STATUS (original)
+++ httpd/httpd/branches/2.0.x/STATUS Thu Aug  5 17:41:00 2010
@@ -205,6 +205,11 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
     Use recent files from http://git.savannah.gnu.org/cgit/config.git.
     +1: rjung
 
+  * CVE-2010-1452 fix for mod_dav
+    Trunk patch: http://svn.apache.org/viewvc?view=revision&revision=966348
+      (mod_cache and mod_session portions don't apply to 2.0.x)
+    2.0.x patch: http://archive.apache.org/dist/httpd/patches/apply_to_2.0.63/CVE-2010-1452-patch-2.0.txt
+
 PATCHES TO BACKPORT THAT ARE ON HOLD OR NOT GOING ANYWHERE SOON:
 
     *) mod_headers: Support {...}s tag for SSL variable lookup.