The proposed Apache Tomcat 9.0.102 release is now available for voting. The notable changes compared to 9.0.100 are:
- Improve the checks for exposure to and protection against CVE-2024-56337 so that reflection is not used unless required. The checks for whether the file system is case sensitive or not have been removed. - Use Transfer-Encoding for compression rather than Content-Encoding if the client submits a TE header containing gzip - Add makensis as an option for building the Installer for Windows on non-Windows platforms. For full details, see the changelog: https://nightlies.apache.org/tomcat/tomcat-9.0.x/docs/changelog.html It can be obtained from: https://dist.apache.org/repos/dist/dev/tomcat/tomcat-9/v9.0.102/ The Maven staging repo is: https://repository.apache.org/content/repositories/orgapachetomcat-1537 The tag is: https://github.com/apache/tomcat/tree/9.0.102 2a8337689eedee1f2edf15a17cedbf8b2f27b47e The proposed 9.0.102 release is: [ ] -1, Broken - do not release [ ] +1, Stable - go ahead and release as 9.0.102 Rémy --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
