From: Joe Orton <jorton@apache.org>
Date: Wed, 2 Jun 2004 14:30:40 +0000 (+0000)
Subject: 2*mod_dav, 4*mod_ssl, 1*mod_deflate proposals, and a single measly
X-Git-Tag: 2.0.50~49
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=a313447348acc05dc8f2aa3da400ec0c23f0ac8f;p=thirdparty%2Fapache%2Fhttpd.git

2*mod_dav, 4*mod_ssl, 1*mod_deflate proposals, and a single measly
vote.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/APACHE_2_0_BRANCH@103822 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/STATUS b/STATUS
index 3255bbef6bc..6098b84bdfb 100644
--- a/STATUS
+++ b/STATUS
@@ -1,5 +1,5 @@
 APACHE 2.0 STATUS:                                              -*-text-*-
-Last modified at [$Date: 2004/06/01 20:27:10 $]
+Last modified at [$Date: 2004/06/02 14:30:40 $]
 
 Release:
 
@@ -72,6 +72,28 @@ PATCHES TO BACKPORT FROM 2.1
   [ please place file names and revisions from HEAD here, so it is easy to
     identify exactly what the proposed changes are! ]
 
+    *) mod_deflate: Fix memory consumption proportional to response size.
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/filters/mod_deflate.c?r1=1.48&r2=1.49
+       PR: 29318
+       +1: jorton
+
+    *) mod_ssl: Fix buffer overflow in FakeBasicAuth support (CVE CAN-2004-0488)
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_kernel.c?r1=1.105&r2=1.106
+       +1: jorton
+
+    *) mod_ssl: Remove some unused functions (after CAN-2004-0488 fix is applied)
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_util.c?r1=1.46&r2=1.47
+       +1: jorton
+
+    *) mod_ssl: Fix a GCC strict-aliasing warning.
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_config.c?r1=1.90&r2=1.91
+       +1: jorton
+
+    *) mod_ssl: Cleanups and fixes for mod_ssl logging.
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_init.c?r1=1.124&r2=1.125
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_log.c?r1=1.31&r2=1.28
+       +1: jorton
+
     *) Enable the option to support anonymous shared memory in mod_ldap.
        This makes the cache work on Linux again.
        modules/experimental/util_ldap.c r1.30
@@ -166,7 +188,7 @@ PATCHES TO BACKPORT FROM 2.1
          modules/proxy/mod_proxy.c: r1.99
          modules/proxy/proxy_ftp.c: r1.140
          server/core.c: r1.272
-       +1: nd, trawick
+       +1: nd, trawick, jorton
 
     *) mod_usertrack: Escape the cookie_name before pasting into the regexp.
        (2.0 + 1.3)
@@ -213,6 +235,17 @@ PATCHES TO BACKPORT FROM 2.1
        http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/aaa/mod_auth_digest.c?r1=1.86&r2=1.87
        +1: geoff, nd
 
+    *) mod_dav: Fix a segfault in an autoversioning error path.
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/dav/main/mod_dav.c?r1=1.106&r2=1.107
+       PR: 29148
+       +1: jorton
+
+    *) mod_dav: Fix a 2518 compliance issue which affects Eclipse; give a 409 
+       rather than a 403 for a MKCOL with a missing intermediate collection
+       http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/dav/fs/repos.c?r1=1.80&r2=1.81
+       PR: 29034
+       +1: jorton
+
     *) mod_dav: Send an EOS at the end of the multistatus brigade.
        http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/dav/main/mod_dav.c?r1=1.105&r2=1.106
        +1: jorton