From: Rainer Jung <rjung@apache.org>
Date: Mon, 11 Jan 2010 09:08:35 +0000 (+0000)
Subject: Add proposal.
X-Git-Tag: 2.0.64~74
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=5ec2206023d3ac7bfa5688cd903957569751966b;p=thirdparty%2Fapache%2Fhttpd.git

Add proposal.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@897805 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/STATUS b/STATUS
index cb4ea7dffc3..d26d3dcbcb6 100644
--- a/STATUS
+++ b/STATUS
@@ -173,6 +173,17 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
       http://people.apache.org/~rjung/patches/cve-2009-3555_httpd_2_0_x-v2.patch
     +1: rjung, rpluem
 
+  * mod_ssl: Further mitigation for the TLS renegotation attack, CVE-2009-3555
+    Trunk version of patch:
+      http://svn.apache.org/viewvc?rev=891282&view=rev
+    Patch in 2.2.x branch:
+      http://svn.apache.org/viewvc?rev=896900&view=rev
+    Backport:
+      http://people.apache.org/~rjung/patches/cve-2009-3555_httpd_2_0_x-v2.patch
+    Patch applies also on top of above partial fix for CVE-2009-3555
+    with some offset.
+    +1: rjung
+
 PATCHES TO BACKPORT THAT ARE ON HOLD OR NOT GOING ANYWHERE SOON:
 
     *) mod_headers: Support {...}s tag for SSL variable lookup.