[users@httpd] Re: Next version of Apache 2.2?

On 03/01/2017 21:31, Development Manager wrote: CVE-2016-8743 was patched/mitigated in Apache 2.4 but is still an outstanding issue in 2.2, according to https://security-tracker.debian.org/tracker/CVE-2016-8743. Is there a plan to rebase it to 2.2? If so, do you know when? The reason I ask is

[users@httpd] Next version of Apache 2.2?

CVE-2016-8743 was patched/mitigated in Apache 2.4 but is still an outstanding issue in 2.2, according to https://security-tracker.debian.org/tracker/CVE-2016-8743. Is there a plan to rebase it to 2.2? If so, do you know when? The reason I ask is PCI DSS requires that we have all vulnerabilities