You are viewing a plain text version of this content. The canonical link for it is here.

Posted to cvs@httpd.apache.org by jo...@apache.org on 2014/07/17 13:17:40 UTC

svn commit: r1611326 - /httpd/httpd/branches/2.2.x/STATUS

Author: jorton
Date: Thu Jul 17 11:17:39 2014
New Revision: 1611326

URL: http://svn.apache.org/r1611326
Log:
CVE-2014-0117 does not seem to apply to 2.2.x, second set of eyeballs welcome.

Modified:
    httpd/httpd/branches/2.2.x/STATUS

Modified: httpd/httpd/branches/2.2.x/STATUS
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/STATUS?rev=1611326&r1=1611325&r2=1611326&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/STATUS (original)
+++ httpd/httpd/branches/2.2.x/STATUS Thu Jul 17 11:17:39 2014
@@ -121,6 +121,8 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
      2.4.x patch: http://svn.apache.org/r1610737 (simplified ver)
      2.2.x patch: 2.4 works
      +1: covener, ylavic
+     -1: jorton: patch does not apply (or should not, though "svn merge" works),
+                 the code in 2.2.x looks safe by eyeball and testing.
 
    * mod_proxy: Don't reuse a SSL backend connection whose SNI differs. PR 55782.
                 This may happen when ProxyPreserveHost is on and the proxy-worker