Author: markt Revision: 1754726 Modified property: svn:log Modified: svn:log at Thu Oct 27 12:26:13 2016 ------------------------------------------------------------------------------ --- svn:log (original) +++ svn:log Thu Oct 27 12:26:13 2016 @@ -1 +1,2 @@ Provide a mechanism that enables the container to check if a component (typically a web application) has been granted a given permission when running under a SecurityManager without the current execution stack having to have passed through the component. Use this new mechanism to extend SecurityManager protection to the system property replacement feature of the digester. +This is the fix for CVE-2016-6794
--------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
