• last updated a few seconds ago
Constraints: committers
Constraints: files
Constraints: dates
[BZ-1423507] create one-off branch
  1. … 1173 more files in changeset.
BZ1410869: Fix sync of AysncContext.complete, and change all syncs from the processor object to the request object (since it is available everywhere).
[JBPAPP-11259] clear request content type after form recycles headers
[JBPAPP-11259] apply CVE-2012-5885, CVE-2012-5886, CVE-2012-5887
[JBPAPP-11259] apply CVE-2012-3546
[JBPAPP-11259] create one off branch
    • -0
    • +329
    • -0
    • +0
    • -0
    • +46
    • -0
    • +543
    • -0
    • +376
  1. … 1533 more files in changeset.
Web 7.5.21.
BZ1410869: Make the async context a separate object from the request, so that it can be recycled to avoid bad side effects.
BZ1399005: Add debug to max swallow input.
Web 7.5.20.
BZ1399014: Fix CVE-2016-6816 request smuggling
BZ1391834: Avoid logging NPE.
[BZ-1377657] backport bz-1370182 Http response errors using Async Servlet
[BZ-1377657] one off patch branch
    • -0
    • +146
    • -0
    • +343
  1. … 1173 more files in changeset.
BZ1376379: Port Tomcat change that sets 500 status when an unexpected exception is caught as best effort to report an error.
Web 7.5.19.
BZ1275403: Loop over unwrap loop to make sure some bytes are produced in blocking mode. Patch by Masafumi Miura.
Web 7.5.18.
BZ1370182: Add syncing for Servlet 3.0 async to allow non container threads interaction. The extra sync shouldn't be too expensive.
BZ1341410: Port Tomcat parsing code fixes.
BZ1203510: Apply workaround patch to display statistics if possible with the NIO connector. Patch by Enrique Gonzalez Martinez.
[bz-1357678] Backporting fix for [BZ1302434] which resolves an issue where GET request parameters are duplicated

[bz-1357678] Creating a patch branch

  1. … 1173 more files in changeset.
BZ1302434: Remove code block that seems useless (query string parameters will be parsed again, and is not used with a request body).
BZ1350444: CVE-2016-3092 DoS issue, port from Tomcat.
Web 7.5.17.
BZ1315982: Port fix for minor flaw in URL normalization.
Web 7.5.16
BZ1318006: Port fix for file conditions.
BZ1315598: Add session id length configuration, submitted by Enrique Gonzalez Martinez.