From: Yann Ylavic Date: Sun, 16 Nov 2014 22:10:14 +0000 (+0000) Subject: Propose CVE-2014-3583 fix made minimal. X-Git-Tag: 2.4.11~169 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=b1a62de7bc46039798e5ebb129d9c27ca3d7044e;p=thirdparty%2Fapache%2Fhttpd.git Propose CVE-2014-3583 fix made minimal. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1640037 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/STATUS b/STATUS index dba4a8d0389..4b90a7ec617 100644 --- a/STATUS +++ b/STATUS @@ -108,9 +108,9 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK: [ New proposals should be added at the end of the list ] * SECURITY: CVE-2014-3583 (cve.mitre.org) - mod_proxy_fcgi: Fix a potential crash with response headers' size above 8K. - trunk patch: http://svn.apache.org/r1638818 - http://svn.apache.org/r1639812 + mod_proxy_fcgi, mod_authnz_fcgi: Fix a potential crash with response + headers' size above 8K. + trunk patch: http://svn.apache.org/r1640036 2.4.x patch: trunk works (modulo CHANGES) +1: ylavic