• last updated 12 mins ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
BZ1498331: Followup, some specific code for trailing / handling needed to be added.
Web 7.5.26.
Web 7.5.26.
BZ1498331: Port over new checks for CVE-2017-12615 and followups.
Web 7.5.25.
Web 7.5.25.
[BZ-1494661] merge one-off fix
[BZ-1494661] create one-off branch
  1. /branches/JBOSSWEB_7_5_23_FINAL_BZ-1494661
  2. … 1177 more files in changeset.
[BZ-1493159] merge one-off fix
[BZ-1493159] create one-off branch
  1. /branches/JBOSSWEB_7_5_24_FINAL_BZ-1493159
  2. … 1177 more files in changeset.
[BZ-1491857] change HttpParser.requestTargetAllow to empty default
BZ1492870: Endpoint close has to be taken out of the sync to avoid a deadlock.
BZ1491857: Switch the default to the HTTP spec.
[BZ-1491857] merge fix
BZ1489846: Part 2: remove char restrictions.
[BZ-1491857] merge fix
[BZ-1491857] create one-off branch
  1. /branches/JBOSSWEB_7_5_24_FINAL_BZ-1491857
  2. … 1177 more files in changeset.
BZ1489846: Port Coty's patch to allow again {|} chars in the URL. For compatibility, this is enabled by default (set the system property to empty to disable it).
Web 7.5.24.
Web 7.5.24.
BZ1433123: Avoid calling prepareRequest if an error occurred earlier.
BZ1460573: Handle error processing as a GET, fix for CVE-2017-5664.
Web 7.5.23.
Web 7.5.23
BZ1393221: Port Tomcat fix for CVE-2016-6796.
BZ1393226: Patch CVE-2016-5018, just in case.
BZ1419145: Hack to force restore of the content type header even when there's no body. Submitted by Aaron Ogburn.
BZ1439225: set encoding for multipart/form-data. Submitted by Aaron Ogburn.
Web 7.5.22.
Web 7.5.22.