From 254ffb9cc6a190bd400a14030c1de7677c9b1227 Mon Sep 17 00:00:00 2001
From: "Mark J. Cox" <mjc@apache.org>
Date: Tue, 19 Jun 2007 12:19:01 +0000
Subject: [PATCH] Propose for backport mod_cache issue

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@548704 13f79535-47bb-0310-9956-ffa450edef68
---
 STATUS | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/STATUS b/STATUS
index 2e63d271db1..c14fae6d7df 100644
--- a/STATUS
+++ b/STATUS
@@ -301,6 +301,15 @@ PATCHES TO BACKPORT THAT ARE ON HOLD OR NOT GOING ANYWHERE SOON:
              propogating POST or other non-GET types?  It seems that almost
              any subreq should be handled as a GET in 2.0.
 
+    *) SECURITY: CVE-2007-1863 (cve.mitre.org)
+      mod_cache: Prevent segfault from Cache-Control headers with no
+      values
+      Trunk version of patch:
+        http://svn.apache.org/viewvc?view=rev&rev=535617
+      2.0.x version of patch:
+        http://people.apache.org/~mjc/cve-2007-1863-2.0.patch
+      +1: mjc
+
 CURRENT VOTES:
 
     *) httpd-std.conf and friends;
-- 
2.47.2