RELEASE SHOWSTOPPERS:
+
+PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
+ [ start all new proposals below, under PATCHES PROPOSED. ]
+
*) core: CVE-2016-5387: Mitigate [f]cgi "httpoxy" issues
Trunk version of patch:
http://svn.apache.org/viewvc?rev=1753228&view=rev
Backport version for 2.4.x of patch:
Trunk version of patch works (modulo CHANGES)
- +1: wrowe, rplue,m
-
-PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
- [ start all new proposals below, under PATCHES PROPOSED. ]
+ +1: wrowe, rpluem, ylavic
*) mod_mem_cache: Don't cache incomplete responses when the client aborts
the connection, unless they are complete. PR 45049.
aborted the connection) where we now still cache it in any case
if it is complete (for immediate availability for next clients).
+
PATCHES PROPOSED TO BACKPORT FROM TRUNK:
[ New proposals should be added at the end of the list ]
2.2.x Patch: http://home.apache.org/~ylavic/patches/httpd-2.2.x-mod_proxy_connect-transfer.patch
+1: wrowe, ylavic
+ *) mod_proxy: Play/restore the TLS-SNI on new backend connections which
+ had to be issued because the remote closed the previous/reusable one
+ during idle (keep-alive) time.
+ trunk patch: http://svn.apache.org/r1729826
+ http://svn.apache.org/r1729847
+ http://svn.apache.org/r1732986
+ http://svn.apache.org/r1733056
+ 2.4.x patch: http://svn.apache.org/r1733474
+ 2.2.x patch: http://home.apache.org/~ylavic/patches/httpd-2.2.x-mod_proxy-SNI_reuse.patch
+ +1: ylavic
+
PATCHES/ISSUES THAT ARE STALLED
projects / thirdparty / apache / httpd.git / commitdiff
