From: Yann Ylavic <ylavic@apache.org>
Date: Sun, 16 Nov 2014 22:10:14 +0000 (+0000)
Subject: Propose CVE-2014-3583 fix made minimal.
X-Git-Tag: 2.4.11~169
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=b1a62de7bc46039798e5ebb129d9c27ca3d7044e;p=thirdparty%2Fapache%2Fhttpd.git

Propose CVE-2014-3583 fix made minimal.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1640037 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/STATUS b/STATUS
index dba4a8d0389..4b90a7ec617 100644
--- a/STATUS
+++ b/STATUS
@@ -108,9 +108,9 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
   [ New proposals should be added at the end of the list ]
 
    * SECURITY: CVE-2014-3583 (cve.mitre.org)
-     mod_proxy_fcgi: Fix a potential crash with response headers' size above 8K.
-     trunk patch: http://svn.apache.org/r1638818
-                  http://svn.apache.org/r1639812
+     mod_proxy_fcgi, mod_authnz_fcgi: Fix a potential crash with response
+     headers' size above 8K.
+     trunk patch: http://svn.apache.org/r1640036
      2.4.x patch: trunk works (modulo CHANGES)
      +1: ylavic