2*mod_dav, 4*mod_ssl, 1*mod_deflate proposals, and a single measly

author Joe Orton <jorton@apache.org>

Wed, 2 Jun 2004 14:30:40 +0000 (14:30 +0000)

committer Joe Orton <jorton@apache.org>

Wed, 2 Jun 2004 14:30:40 +0000 (14:30 +0000)
author Joe Orton <jorton@apache.org>
Wed, 2 Jun 2004 14:30:40 +0000 (14:30 +0000)
committer Joe Orton <jorton@apache.org>
Wed, 2 Jun 2004 14:30:40 +0000 (14:30 +0000)
diff --git a/STATUS b/STATUS

index 3255bbef6bc2497df0e81e69b6dc3d18afba24c9..6098b84bdfb3816a6a67d1b346403c8e90d0275c 100644 (file)
--- a/STATUS
+++ b/STATUS
@@ -1,5 +1,5 @@
  APACHE 2.0 STATUS:                                              -*-text-*-
-Last modified at [$Date: 2004/06/01 20:27:10 $]
+Last modified at [$Date: 2004/06/02 14:30:40 $]
  
  Release:
  
@@ -72,6 +72,28 @@ PATCHES TO BACKPORT FROM 2.1
    [ please place file names and revisions from HEAD here, so it is easy to
      identify exactly what the proposed changes are! ]
  
+    *) mod_deflate: Fix memory consumption proportional to response size.
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/filters/mod_deflate.c?r1=1.48&r2=1.49
+       PR: 29318
+       +1: jorton
+
+    *) mod_ssl: Fix buffer overflow in FakeBasicAuth support (CVE CAN-2004-0488)
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_kernel.c?r1=1.105&r2=1.106
+       +1: jorton
+
+    *) mod_ssl: Remove some unused functions (after CAN-2004-0488 fix is applied)
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_util.c?r1=1.46&r2=1.47
+       +1: jorton
+
+    *) mod_ssl: Fix a GCC strict-aliasing warning.
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_config.c?r1=1.90&r2=1.91
+       +1: jorton
+
+    *) mod_ssl: Cleanups and fixes for mod_ssl logging.
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_init.c?r1=1.124&r2=1.125
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_log.c?r1=1.31&r2=1.28
+       +1: jorton
+
      *) Enable the option to support anonymous shared memory in mod_ldap.
         This makes the cache work on Linux again.
         modules/experimental/util_ldap.c r1.30
@@ -166,7 +188,7 @@ PATCHES TO BACKPORT FROM 2.1
           modules/proxy/mod_proxy.c: r1.99
           modules/proxy/proxy_ftp.c: r1.140
           server/core.c: r1.272
-       +1: nd, trawick
+       +1: nd, trawick, jorton
  
      *) mod_usertrack: Escape the cookie_name before pasting into the regexp.
         (2.0 + 1.3)
@@ -213,6 +235,17 @@ PATCHES TO BACKPORT FROM 2.1
         http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/aaa/mod_auth_digest.c?r1=1.86&r2=1.87
         +1: geoff, nd
  
+    *) mod_dav: Fix a segfault in an autoversioning error path.
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/dav/main/mod_dav.c?r1=1.106&r2=1.107
+       PR: 29148
+       +1: jorton
+
+    *) mod_dav: Fix a 2518 compliance issue which affects Eclipse; give a 409 
+       rather than a 403 for a MKCOL with a missing intermediate collection
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/dav/fs/repos.c?r1=1.80&r2=1.81
+       PR: 29034
+       +1: jorton
+
      *) mod_dav: Send an EOS at the end of the multistatus brigade.
         http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/dav/main/mod_dav.c?r1=1.105&r2=1.106
         +1: jorton
author	Joe Orton <jorton@apache.org>
	Wed, 2 Jun 2004 14:30:40 +0000 (14:30 +0000)
committer	Joe Orton <jorton@apache.org>
	Wed, 2 Jun 2004 14:30:40 +0000 (14:30 +0000)