+1: pquerna, nd, wrowe
Votes from before the integration branch: +1: jerenkrantz
+ *) Fix CAN-2005-2491, integer overflow in pcre.
+ http://svn.apache.org/viewcvs?rev=233493&view=rev
+ rediff for 2.0: http://people.apache.org/~jorton/CAN-2005-2491.patch
+ test case: perl-framework/t/security/CAN-2005-2491.t
+ +1: jorton, nd, wrowe
+
PATCHES PROPOSED TO BACKPORT FROM TRUNK:
[ please place SVN revisions from trunk here, so it is easy to
identify exactly what the proposed changes are! Add all new
*) Fix CAN-2005-2700, mod_ssl SSLVerifyClient bug
http://svn.apache.org/viewcvs?rev=264800&view=rev
test case: perl-framework/t/security/CAN-2005-2700.t
- +1: jorton
-
- *) Fix CAN-2005-2491, integer overflow in pcre.
- http://svn.apache.org/viewcvs?rev=233493&view=rev
- rediff for 2.0: http://people.apache.org/~jorton/CAN-2005-2491.patch
- test case: perl-framework/t/security/CAN-2005-2491.t
- +1: jorton, nd
+ +1: jorton, wrowe
+ wrowe cautions to backport to 2.2.x branch as well.
*) Correct RFC 2616 non-compliance by refusing to proxy a request body
in a TRACE request, unless TraceEnable extended is configured.
default installation on Windows.
http://svn.apache.org/viewcvs?rev=179622&view=rev
http://svn.apache.org/viewcvs?rev=280114&view=rev
- +1: trawick
+ +1: trawick, wrowe
+ backported 280114 to 2.2.x branch already
*) mod_cache: Fix handling of 'Vary: *". PR 16125.
Trunk: r180341
projects / thirdparty / apache / httpd.git / commitdiff
