From: Eric Covener <covener@apache.org>
Date: Wed, 16 Jul 2014 01:03:29 +0000 (+0000)
Subject: get proposal CVE-2014-0117 on the books
X-Git-Tag: 2.2.28~47
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=f0d8298a30bd171079a6103c76b439774fbb2648;p=thirdparty%2Fapache%2Fhttpd.git

get proposal CVE-2014-0117 on the books


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@1610891 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/STATUS b/STATUS
index fe553a29bfc..57bce868b42 100644
--- a/STATUS
+++ b/STATUS
@@ -146,6 +146,14 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
      2.2.x patch: http://people.apache.org/~covener/patches/httpd-2.2.x-deflate_limitrequestbody.diff
      +1: covener, ylavic
 
+
+   * SECURITY: CVE-2014-0117 (cve.mitre.org)
+     Fix crashing with mod_proxy Connection handling.
+     trunk patch: http://svn.apache.org/r1610674
+     2.4.x patch: http://svn.apache.org/r1610737 (simplified ver)
+     2.2.x patch: 2.4 works
+     +1 covener:
+
    * mod_proxy: Don't reuse a SSL backend connection whose SNI differs. PR 55782.
                 This may happen when ProxyPreserveHost is on and the proxy-worker
                 handles connections to different Hosts.