From 7058107b4e0c5edb8ccc5816e58bb44cb816935b Mon Sep 17 00:00:00 2001
From: Steven Clark <steven.clark@hashicorp.com>
Date: Wed, 8 Feb 2023 10:06:44 -0500
Subject: [PATCH] Add OCSP GET known issue (#19066)

---
 .../content/docs/upgrading/upgrade-to-1.12.x.mdx   | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/website/content/docs/upgrading/upgrade-to-1.12.x.mdx b/website/content/docs/upgrading/upgrade-to-1.12.x.mdx
index 639656edfd..e97dce34e0 100644
--- a/website/content/docs/upgrading/upgrade-to-1.12.x.mdx
+++ b/website/content/docs/upgrading/upgrade-to-1.12.x.mdx
@@ -159,4 +159,16 @@ https://github.com/hashicorp/vault/commit/76165052e54f884ed0aa2caa496083dc84ad1c
 
 #### Impacted Versions
 
-Affects versions 1.12.0, 1.12.1, and 1.12.2. A fix will be released in 1.12.3.
\ No newline at end of file
+Affects versions 1.12.0, 1.12.1, and 1.12.2. A fix will be released in 1.12.3.
+
+### PKI OCSP GET requests return malformed request responses
+
+If an OCSP GET request contains a '+' character, a malformed request response will be
+returned instead of properly processing the request due to a double decoding issue within the
+handler.
+
+As a workaround, OCSP POST requests can be used which are unaffected.
+
+#### Impacted Versions
+
+Affects version 1.12.3. A fix will be released in 1.12.4.