From: Eric Covener <covener@apache.org>
Date: Mon, 23 Jan 2012 15:08:49 +0000 (+0000)
Subject: propose CVE-2012-0053
X-Git-Tag: 2.2.22~12
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=3331f750e9c0c57bc0aeb66b48e1053bfec9d49b;p=thirdparty%2Fapache%2Fhttpd.git

propose CVE-2012-0053


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@1234841 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/STATUS b/STATUS
index b990f6b74aa..9cb66f93e38 100644
--- a/STATUS
+++ b/STATUS
@@ -165,6 +165,14 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
       http://svn.apache.org/viewvc?rev=1227860&view=rev
     +1: wrowe
 
+  * core: Fix header/cookie values echoed in default 400 error document 
+    (CVE-2012-0053)
+    Trunk patch:
+      http://svn.apache.org/viewvc?rev=1234837&view=rev 
+    2.2.x patch: 
+      http://people.apache.org/~covener/patches/httpd-2.2.x-CVE-2012-0053.diff
+    +1 covener
+
 PATCHES/ISSUES THAT ARE STALLED
 
   * core: Support wildcards in both the directory and file components of