• last updated a few seconds ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
[JBPAPP-11259] apply CVE-2012-3546
[JBPAPP-11259] create one off branch
    • -0
    • +329
    ./JBOSSWEB_2_1_13_GA_JBPAPP-11259/webapps/ROOT/jbossweb.css
    • -0
    • +0
    ./JBOSSWEB_2_1_13_GA_JBPAPP-11259/lib/mail.jar
    • -0
    • +46
    ./JBOSSWEB_2_1_13_GA_JBPAPP-11259/java/javax/servlet/FilterChain.java
    • -0
    • +543
    ./JBOSSWEB_2_1_13_GA_JBPAPP-11259/webapps/docs/html-manager-howto.xml
    • -0
    • +376
    ./JBOSSWEB_2_1_13_GA_JBPAPP-11259/webapps/docs/tomcat-docs.xsl
  1. … 1533 more files in changeset.
Web 7.5.21.
BZ1410869: Make the async context a separate object from the request, so that it can be recycled to avoid bad side effects.
BZ1399005: Add debug to max swallow input.
Web 7.5.20.
BZ1399014: Fix CVE-2016-6816 request smuggling
BZ1391834: Avoid logging NPE.
[BZ-1377657] backport bz-1370182 Http response errors using Async Servlet
[BZ-1377657] one off patch branch
    • -0
    • +146
    ./JBOSSWEB_7_5_17_FINAL_BZ-1377657/webapps/docs/index.xml
    • -0
    • +343
    ./JBOSSWEB_7_5_17_FINAL_BZ-1377657/webapps/docs/apr.xml
  1. … 1173 more files in changeset.
BZ1376379: Port Tomcat change that sets 500 status when an unexpected exception is caught as best effort to report an error.
Web 7.5.19.
BZ1275403: Loop over unwrap loop to make sure some bytes are produced in blocking mode. Patch by Masafumi Miura.
Web 7.5.18.
BZ1370182: Add syncing for Servlet 3.0 async to allow non container threads interaction. The extra sync shouldn't be too expensive.
BZ1341410: Port Tomcat parsing code fixes.
BZ1203510: Apply workaround patch to display statistics if possible with the NIO connector. Patch by Enrique Gonzalez Martinez.
[bz-1357678] Backporting fix for [BZ1302434] which resolves an issue where GET request parameters are duplicated

[bz-1357678] Creating a patch branch

  1. … 1173 more files in changeset.
BZ1302434: Remove code block that seems useless (query string parameters will be parsed again, and is not used with a request body).
BZ1350444: CVE-2016-3092 DoS issue, port from Tomcat.
Web 7.5.17.
BZ1315982: Port fix for minor flaw in URL normalization.
Web 7.5.16
BZ1318006: Port fix for file conditions.
BZ1315598: Add session id length configuration, submitted by Enrique Gonzalez Martinez.
BZ1313202: Fix ordering problem parsing N* flags.
Web 7.5.15
Disable BZ1256325 fix: org.apache.tomcat.util.http.mapper.STRICT_WELCOME_FILES system property would need to be set to true.
Web 7.5.14