On Tue, Oct 1, 2013 at 4:53 PM, Micha Lenk <mi...@lenk.info> wrote: > As far as I understand the issue, the main point of prefetch was to fix > CVE-2005-2088, a HTTP Request Smuggling attack (see also > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2088). >
This is discussed in PR40029 and is not related to HRS, the real fix regarding HRS was about both CL/TE sent by th client ( https://issues.apache.org/bugzilla/show_bug.cgi?id=40029#c4). Regards, > Micha >