Author: markt
Date: Fri Jul 4 20:00:26 2025
New Revision: 1926961
URL: http://svn.apache.org/viewvc?rev=1926961&view=rev
Log:
Update site for release of Tomcat 11.0.9
Modified:
tomcat/site/trunk/build.properties.default
tomcat/site/trunk/docs/download-11.html
tomcat/site/trunk/docs/index.html
tomcat/site/trunk/docs/migration-11.0.html
tomcat/site/trunk/docs/oldnews.html
tomcat/site/trunk/docs/security-9.html
tomcat/site/trunk/docs/whichversion.html
tomcat/site/trunk/xdocs/download-11.xml
tomcat/site/trunk/xdocs/index.xml
tomcat/site/trunk/xdocs/migration-11.0.xml
tomcat/site/trunk/xdocs/oldnews.xml
tomcat/site/trunk/xdocs/security-9.xml
tomcat/site/trunk/xdocs/whichversion.xml
Modified: tomcat/site/trunk/build.properties.default
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/build.properties.default?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/build.properties.default (original)
+++ tomcat/site/trunk/build.properties.default Fri Jul 4 20:00:26 2025
@@ -38,7 +38,7 @@ tomcat.loc=https://downloads.apache.org/
# ----- Tomcat versions -----
tomcat9.0=9.0.106
tomcat10.1=10.1.43
-tomcat11.0=11.0.8
+tomcat11.0=11.0.9
# ----- Download destination -----
tomcat-site-docs.home=${base.path}/tomcat-site-docs/
Modified: tomcat/site/trunk/docs/download-11.html
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/download-11.html?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/docs/download-11.html (original)
+++ tomcat/site/trunk/docs/download-11.html Fri Jul 4 20:00:26 2025
@@ -19,7 +19,7 @@
</div><h3 id="Quick_Navigation">Quick Navigation</h3><div class="text">
-[define v]11.0.8[end]
+[define v]11.0.9[end]
<a href="https://downloads.apache.org/tomcat/tomcat-11/KEYS";>KEYS</a> |
<a href="#[v]">[v]</a> |
<a href="[preferred]tomcat/tomcat-11" rel="nofollow">Browse</a> |
Modified: tomcat/site/trunk/docs/index.html
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/index.html?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/docs/index.html (original)
+++ tomcat/site/trunk/docs/index.html Fri Jul 4 20:00:26 2025
@@ -34,7 +34,40 @@ wiki page.</p>
<p>Apache Tomcat, Tomcat, Apache, the Apache feather, and the Apache Tomcat
project logo are trademarks of the Apache Software Foundation.</p>
+</div><h3 id="Tomcat_11.0.9_Released"><span
class="pull-right">2025-07-04</span> Tomcat 11.0.9 Released</h3><div
class="text">
+<p>
+The Apache Tomcat Project is proud to announce the release of version 11.0.9
+of Apache Tomcat. This release implements specifications that are part of the
+Jakarta EE 11 platform.</p>
+<p>Users of Tomcat 10 onwards should be aware that, as a result of the move
from
+Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
+Foundation, the primary package for all implemented APIs has changed from
+<code>javax.*</code> to <code>jakarta.*</code>. This will almost certainly
+require code changes to enable applications to migrate from Tomcat 9 and
earlier
+to Tomcat 10 and later. A
+<a href="https://github.com/apache/tomcat-jakartaee-migration";>migration
+tool</a> is available to aid this process.</p>
+<p>The notable changes in this release are:</p>
+<ul>
+ <li>Increase the default for maxPartCount from 10 to 50. Update the
+ documentation to provide more details on the memory requirements
+ to support multi-part uploads while avoiding a denial of service
+ risk.</li>
+<li>Various improvements to HTTP/2</li>
+<li>Fix JMX value for keepAliveCount on the endpoint. Also add the
+ value of useVirtualThreads in JMX.</li>
+</ul>
+<p>
+Full details of these changes, and all the other changes, are available in the
+<a href="tomcat-11.0-doc/changelog.html#Tomcat_11.0.9_(markt)">Tomcat 11
+changelog</a>.
+</p>
+
+<p style="text-align: center;">
+<a href="https://tomcat.apache.org/download-11.cgi";>Download</a>
+</p>
</div><h3 id="Tomcat_10.1.43_Released"><span
class="pull-right">2025-07-04</span> Tomcat 10.1.43 Released</h3><div
class="text">
+
<p>
The Apache Tomcat Project is proud to announce the release of version 10.1.43
of Apache Tomcat. This release implements specifications that are part of the
@@ -117,10 +150,6 @@ Full details of these changes, and all t
<a href="tomcat-11.0-doc/changelog.html#Tomcat_11.0.8_(markt)">Tomcat 11
changelog</a>.
</p>
-
-<p style="text-align: center;">
-<a href="https://tomcat.apache.org/download-11.cgi";>Download</a>
-</p>
</div><h3 id="Tomcat_Native_2.0.9_Released"><span
class="pull-right">2025-05-29</span> Tomcat Native 2.0.9 Released</h3><div
class="text">
<p>
The Apache Tomcat Project is proud to announce the release of version 2.0.9 of
Modified: tomcat/site/trunk/docs/migration-11.0.html
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/migration-11.0.html?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/docs/migration-11.0.html (original)
+++ tomcat/site/trunk/docs/migration-11.0.html Fri Jul 4 20:00:26 2025
@@ -196,8 +196,9 @@ versions of Apache Tomcat<sup>®</sup
<option value="11.0.4">11.0.4</option>
<option value="11.0.5">11.0.5</option>
<option value="11.0.6">11.0.6</option>
- <option value="11.0.7" selected>11.0.7</option>
- <option value="11.0.8">11.0.8</option>
+ <option value="11.0.7">11.0.7</option>
+ <option value="11.0.8" selected>11.0.8</option>
+ <option value="11.0.9">11.0.9</option>
</select>,</label> <label>new version:
<select name="target">
<option value="11.0.0-M1">11.0.0-M1</option>
@@ -231,7 +232,8 @@ versions of Apache Tomcat<sup>®</sup
<option value="11.0.5">11.0.5</option>
<option value="11.0.6">11.0.6</option>
<option value="11.0.7">11.0.7</option>
- <option value="11.0.8" selected>11.0.8</option>
+ <option value="11.0.8">11.0.8</option>
+ <option value="11.0.9" selected>11.0.9</option>
<option value="HEAD">trunk (unreleased)</option>
</select></label>
</p>
Modified: tomcat/site/trunk/docs/oldnews.html
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/oldnews.html?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/docs/oldnews.html (original)
+++ tomcat/site/trunk/docs/oldnews.html Fri Jul 4 20:00:26 2025
@@ -19,6 +19,35 @@
<li><a href="oldnews-2011.html">year 2011</a></li>
<li><a href="oldnews-2010.html">year 2010</a></li>
</ul>
+</div><h3 id="Tomcat_11.0.8_Released"><span
class="pull-right">2025-06-09</span> Tomcat 11.0.8 Released</h3><div
class="text">
+<p>
+The Apache Tomcat Project is proud to announce the release of version 11.0.8
+of Apache Tomcat. This release implements specifications that are part of the
+Jakarta EE 11 platform.</p>
+<p>Users of Tomcat 10 onwards should be aware that, as a result of the move
from
+Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
+Foundation, the primary package for all implemented APIs has changed from
+<code>javax.*</code> to <code>jakarta.*</code>. This will almost certainly
+require code changes to enable applications to migrate from Tomcat 9 and
earlier
+to Tomcat 10 and later. A
+<a href="https://github.com/apache/tomcat-jakartaee-migration";>migration
+tool</a> is available to aid this process.</p>
+<p>The notable changes in this release are:</p>
+<ul>
+<li>Provide finer grained control of multi-part request processing via two
+ new attributes on the Connector element.</li>
+<li>Mark the JSP wrapper for reload after a failed compilation.</li>
+<li>Update Tomcat Native to 2.0.9 including Windows binaries built with
+ OpenSSL 3.5.0.</li>
+</ul>
+<p>
+Full details of these changes, and all the other changes, are available in the
+<a href="tomcat-11.0-doc/changelog.html#Tomcat_11.0.8_(markt)">Tomcat 11
+changelog</a>.
+</p>
+<p style="text-align: center;">
+<a href="https://tomcat.apache.org/download-11.cgi";>Download</a>
+</p>
</div><h3 id="Tomcat_10.1.42_Released"><span
class="pull-right">2025-06-09</span> Tomcat 10.1.42 Released</h3><div
class="text">
<p>
The Apache Tomcat Project is proud to announce the release of version 10.1.42
@@ -36,7 +65,6 @@ migration tool for Jakarta EE tool</a> w
<ul>
<li>Provide finer grained control of multi-part request processing via two
new attributes on the Connector element.</li>
-
<li>Mark the JSP wrapper for reload after a failed compilation.</li>
<li>Update Tomcat Native to 2.0.9 including Windows binaries built with
Modified: tomcat/site/trunk/docs/security-9.html
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/security-9.html?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/docs/security-9.html (original)
+++ tomcat/site/trunk/docs/security-9.html Fri Jul 4 20:00:26 2025
@@ -36,7 +36,45 @@
</p>
</div><h3 id="Table_of_Contents">Table of Contents</h3><div class="text">
- <ul><li><a href="#Fixed_in_Apache_Tomcat_9.0.106">Fixed in Apache Tomcat
9.0.106</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.105">Fixed in Apache
Tomcat 9.0.105</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.104">Fixed in
Apache Tomcat 9.0.104</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.99">Fixed in Apache Tomcat
9.0.99</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.98">Fixed in Apache
Tomcat 9.0.98</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.97">Fixed in
Apache Tomcat 9.0.97</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.96">Fixed
in Apache Tomcat 9.0.96</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.90">Fixed in Apache Tomcat
9.0.90</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.86">Fixed in Apache
Tomcat 9.0.86</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.83">Fixed in
Apache Tomcat 9.0.83</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.81">Fixed
in Apache Tomcat 9.0.81</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.80">Fixed in Apache Tomcat 9.
0.80</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.75">Fixed in Apache
Tomcat 9.0.75</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.74">Fixed in
Apache Tomcat 9.0.74</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.72">Fixed
in Apache Tomcat 9.0.72</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.71">Fixed in Apache Tomcat
9.0.71</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.69">Fixed in Apache
Tomcat 9.0.69</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.68">Fixed in
Apache Tomcat 9.0.68</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.65">Fixed
in Apache Tomcat 9.0.65</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.63">Fixed in Apache Tomcat
9.0.63</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.62">Fixed in Apache
Tomcat 9.0.62</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.58">Fixed in
Apache Tomcat 9.0.58</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.54">Fixed
in Apache Tomcat 9.0.54</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.48">Fixed in Apache Tomcat 9.0
.48</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.46">Fixed in Apache
Tomcat 9.0.46</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.45">Fixed in
Apache Tomcat 9.0.45</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.44">Fixed
in Apache Tomcat 9.0.44</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.43">Fixed in Apache Tomcat
9.0.43</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.40">Fixed in Apache
Tomcat 9.0.40</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.38">Fixed in
Apache Tomcat 9.0.38</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.37">Fixed
in Apache Tomcat 9.0.37</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.36">Fixed in Apache Tomcat
9.0.36</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.35">Fixed in Apache
Tomcat 9.0.35</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.31">Fixed in
Apache Tomcat 9.0.31</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.30">Fixed
in Apache Tomcat 9.0.30</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.29">Fixed in Apache Tomcat 9.0.
29</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.21">Fixed in Apache Tomcat
9.0.21</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.20">Fixed in Apache
Tomcat 9.0.20</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.19">Fixed in
Apache Tomcat 9.0.19</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.16">Fixed
in Apache Tomcat 9.0.16</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.12">Fixed in Apache Tomcat
9.0.12</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.10">Fixed in Apache
Tomcat 9.0.10</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.9">Fixed in
Apache Tomcat 9.0.9</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.8">Fixed
in Apache Tomcat 9.0.8</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.5">Fixed in Apache Tomcat
9.0.5</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.2">Fixed in Apache
Tomcat 9.0.2</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.1">Fixed in
Apache Tomcat 9.0.1</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.0.M22">Fixed in Apache Tomcat 9.0.0.M22</a
></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.0.M21">Fixed in Apache Tomcat
>9.0.0.M21</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.0.M19">Fixed in
>Apache Tomcat 9.0.0.M19</a></li><li><a
>href="#Fixed_in_Apache_Tomcat_9.0.0.M18">Fixed in Apache Tomcat
>9.0.0.M18</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.0.M17">Fixed in
>Apache Tomcat 9.0.0.M17</a></li><li><a
>href="#Fixed_in_Apache_Tomcat_9.0.0.M15">Fixed in Apache Tomcat
>9.0.0.M15</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.0.M13">Fixed in
>Apache Tomcat 9.0.0.M13</a></li><li><a
>href="#Fixed_in_Apache_Tomcat_9.0.0.M10">Fixed in Apache Tomcat
>9.0.0.M10</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.0.M8">Fixed in
>Apache Tomcat 9.0.0.M8</a></li><li><a
>href="#Fixed_in_Apache_Tomcat_9.0.0.M3">Fixed in Apache Tomcat
>9.0.0.M3</a></li><li><a href="#Not_a_vulnerability_in_Tomcat">Not a
>vulnerability in Tomcat</a></li></ul>
+ <ul><li><a href="#Fixed_in_Apache_Tomcat_9.0.107">Fixed in Apache Tomcat
9.0.107</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.106">Fixed in Apache
Tomcat 9.0.106</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.105">Fixed in
Apache Tomcat 9.0.105</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.104">Fixed in Apache Tomcat
9.0.104</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.99">Fixed in Apache
Tomcat 9.0.99</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.98">Fixed in
Apache Tomcat 9.0.98</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.97">Fixed
in Apache Tomcat 9.0.97</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.96">Fixed in Apache Tomcat
9.0.96</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.90">Fixed in Apache
Tomcat 9.0.90</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.86">Fixed in
Apache Tomcat 9.0.86</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.83">Fixed
in Apache Tomcat 9.0.83</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.81">Fixed in Apache Tomcat
9.0.81</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.80">Fixed in Apache
Tomcat 9.0.80</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.75">Fixed in
Apache Tomcat 9.0.75</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.74">Fixed
in Apache Tomcat 9.0.74</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.72">Fixed in Apache Tomcat
9.0.72</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.71">Fixed in Apache
Tomcat 9.0.71</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.69">Fixed in
Apache Tomcat 9.0.69</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.68">Fixed
in Apache Tomcat 9.0.68</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.65">Fixed in Apache Tomcat
9.0.65</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.63">Fixed in Apache
Tomcat 9.0.63</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.62">Fixed in
Apache Tomcat 9.0.62</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.58">Fixed
in Apache Tomcat 9.0.58</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.54">Fixed in Apache Tomcat 9
.0.54</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.48">Fixed in Apache
Tomcat 9.0.48</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.46">Fixed in
Apache Tomcat 9.0.46</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.45">Fixed
in Apache Tomcat 9.0.45</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.44">Fixed in Apache Tomcat
9.0.44</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.43">Fixed in Apache
Tomcat 9.0.43</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.40">Fixed in
Apache Tomcat 9.0.40</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.38">Fixed
in Apache Tomcat 9.0.38</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.37">Fixed in Apache Tomcat
9.0.37</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.36">Fixed in Apache
Tomcat 9.0.36</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.35">Fixed in
Apache Tomcat 9.0.35</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.31">Fixed
in Apache Tomcat 9.0.31</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.30">Fixed in Apache Tomcat 9.
0.30</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.29">Fixed in Apache
Tomcat 9.0.29</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.21">Fixed in
Apache Tomcat 9.0.21</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.20">Fixed
in Apache Tomcat 9.0.20</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.19">Fixed in Apache Tomcat
9.0.19</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.16">Fixed in Apache
Tomcat 9.0.16</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.12">Fixed in
Apache Tomcat 9.0.12</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.10">Fixed
in Apache Tomcat 9.0.10</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.9">Fixed in Apache Tomcat
9.0.9</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.8">Fixed in Apache
Tomcat 9.0.8</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.5">Fixed in
Apache Tomcat 9.0.5</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.2">Fixed
in Apache Tomcat 9.0.2</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.1">Fixed in Apache Tomcat 9.0.1</a></l
i><li><a href="#Fixed_in_Apache_Tomcat_9.0.0.M22">Fixed in Apache Tomcat
9.0.0.M22</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.0.M21">Fixed in
Apache Tomcat 9.0.0.M21</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.0.M19">Fixed in Apache Tomcat
9.0.0.M19</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.0.M18">Fixed in
Apache Tomcat 9.0.0.M18</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.0.M17">Fixed in Apache Tomcat
9.0.0.M17</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.0.M15">Fixed in
Apache Tomcat 9.0.0.M15</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.0.M13">Fixed in Apache Tomcat
9.0.0.M13</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.0.M10">Fixed in
Apache Tomcat 9.0.0.M10</a></li><li><a
href="#Fixed_in_Apache_Tomcat_9.0.0.M8">Fixed in Apache Tomcat
9.0.0.M8</a></li><li><a href="#Fixed_in_Apache_Tomcat_9.0.0.M3">Fixed in Apache
Tomcat 9.0.0.M3</a></li><li><a href="#Not_a_vulnerability_in_Tomcat">Not a
vulnerability in Tomcat</a></li></ul>
+ </div><h3 id="Fixed_in_Apache_Tomcat_9.0.107"><span
class="pull-right">2025-07-XXX</span> Fixed in Apache Tomcat 9.0.107</h3><div
class="text">
+
+ <p><strong>Important: Dos with HTTP/2 and APR/Native</strong>
+ <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52434";
rel="nofollow">CVE-2025-52434</a></p>
+
+ <p></p>
+
+ <p>This was fixed with commit
+ <a
href="https://github.com/apache/tomcat/commit/8a83c3c42d20762782678932c14005cd3397a018";>8a83c3c4</a>.</p>
+
+ <p>The issue was made public on XXX July 2025.</p>
+
+ <p>Affects: 9.0.0.M1 to 9.0.106</p>
+
+ <p><strong>Important: DoS due to overflow in file upload limit</strong>
+ <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52520";
rel="nofollow">CVE-2025-52520</a></p>
+
+ <p></p>
+
+ <p>This was fixed with commit
+ <a
href="https://github.com/apache/tomcat/commit/927d66fbc294cb65242102b817a45fd80834e040";>927d66fb</a>.</p>
+
+ <p>The issue was made public on XXX July 2025.</p>
+
+ <p>Affects: 9.0.0.M1 to 9.0.106</p>
+
+ <p><strong>Important: DoS via excessive HTTP/2 streams</strong>
+ <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53506";
rel="nofollow">CVE-2025-53506</a></p>
+
+ <p></p>
+
+ <p>This was fixed with commit
+ <a
href="https://github.com/apache/tomcat/commit/434772930f362145516dd60681134e7f0cf8115b";>43477293</a>.</p>
+
+ <p>The issue was made public on XXX July 2025.</p>
+
+ <p>Affects: 9.0.0.M1 to 9.0.106</p>
+
</div><h3 id="Fixed_in_Apache_Tomcat_9.0.106"><span
class="pull-right">2025-06-10</span> Fixed in Apache Tomcat 9.0.106</h3><div
class="text">
<p><strong>Moderate: Security constraint bypass for PreResources and
Modified: tomcat/site/trunk/docs/whichversion.html
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/whichversion.html?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/docs/whichversion.html (original)
+++ tomcat/site/trunk/docs/whichversion.html Fri Jul 4 20:00:26 2025
@@ -31,7 +31,7 @@ specifications</a> and the respective Ap
<td>3.1</td>
<td>3.0</td>
<td>11.0.x</td>
- <td>11.0.8</td>
+ <td>11.0.9</td>
<td>17 and later</td>
</tr>
Modified: tomcat/site/trunk/xdocs/download-11.xml
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/download-11.xml?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/xdocs/download-11.xml (original)
+++ tomcat/site/trunk/xdocs/download-11.xml Fri Jul 4 20:00:26 2025
@@ -31,7 +31,7 @@
Define variable to hold the current version number.
Documentation for ezt.py: https://code.google.com/p/ezt/wiki/Syntax
-->
-[define v]11.0.8[end]
+[define v]11.0.9[end]
<a href="https://downloads.apache.org/tomcat/tomcat-11/KEYS";>KEYS</a> |
<a href="#[v]">[v]</a> |
<a href="[preferred]tomcat/tomcat-11" rel="nofollow">Browse</a> |
Modified: tomcat/site/trunk/xdocs/index.xml
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/index.xml?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/xdocs/index.xml (original)
+++ tomcat/site/trunk/xdocs/index.xml Fri Jul 4 20:00:26 2025
@@ -54,7 +54,43 @@ wiki page.</p>
project logo are trademarks of the Apache Software Foundation.</p>
</section>
+
+<section name="Tomcat 11.0.9 Released" rtext="2025-07-04">
+<p>
+The Apache Tomcat Project is proud to announce the release of version 11.0.9
+of Apache Tomcat. This release implements specifications that are part of the
+Jakarta EE 11 platform.</p>
+<p>Users of Tomcat 10 onwards should be aware that, as a result of the move
from
+Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
+Foundation, the primary package for all implemented APIs has changed from
+<code>javax.*</code> to <code>jakarta.*</code>. This will almost certainly
+require code changes to enable applications to migrate from Tomcat 9 and
earlier
+to Tomcat 10 and later. A
+<a href="https://github.com/apache/tomcat-jakartaee-migration";>migration
+tool</a> is available to aid this process.</p>
+<p>The notable changes in this release are:</p>
+<ul>
+ <li>Increase the default for maxPartCount from 10 to 50. Update the
+ documentation to provide more details on the memory requirements
+ to support multi-part uploads while avoiding a denial of service
+ risk.</li>
+<li>Various improvements to HTTP/2</li>
+<li>Fix JMX value for keepAliveCount on the endpoint. Also add the
+ value of useVirtualThreads in JMX.</li>
+</ul>
+<p>
+Full details of these changes, and all the other changes, are available in the
+<a href="tomcat-11.0-doc/changelog.html#Tomcat_11.0.9_(markt)">Tomcat 11
+changelog</a>.
+</p>
+
+<p style="text-align: center;">
+<a href="download-11.cgi">Download</a>
+</p>
+</section>
+
<section name="Tomcat 10.1.43 Released" rtext="2025-07-04">
+
<p>
The Apache Tomcat Project is proud to announce the release of version 10.1.43
of Apache Tomcat. This release implements specifications that are part of the
@@ -116,8 +152,6 @@ changelog</a>.
</p>
</section>
-
-
<section name="Tomcat 11.0.8 Released" rtext="2025-06-09">
<p>
The Apache Tomcat Project is proud to announce the release of version 11.0.8
@@ -144,10 +178,6 @@ Full details of these changes, and all t
<a href="tomcat-11.0-doc/changelog.html#Tomcat_11.0.8_(markt)">Tomcat 11
changelog</a>.
</p>
-
-<p style="text-align: center;">
-<a href="download-11.cgi">Download</a>
-</p>
</section>
<section name="Tomcat Native 2.0.9 Released" rtext="2025-05-29">
Modified: tomcat/site/trunk/xdocs/migration-11.0.xml
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/migration-11.0.xml?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/xdocs/migration-11.0.xml (original)
+++ tomcat/site/trunk/xdocs/migration-11.0.xml Fri Jul 4 20:00:26 2025
@@ -213,8 +213,9 @@ versions of Apache Tomcat<sup>®</su
<option value="11.0.4">11.0.4</option>
<option value="11.0.5">11.0.5</option>
<option value="11.0.6">11.0.6</option>
- <option value="11.0.7" selected="selected">11.0.7</option>
- <option value="11.0.8">11.0.8</option>
+ <option value="11.0.7">11.0.7</option>
+ <option value="11.0.8" selected="selected">11.0.8</option>
+ <option value="11.0.9">11.0.9</option>
</select>,</label> <label>new version:
<select name="target">
<option value="11.0.0-M1">11.0.0-M1</option>
@@ -248,7 +249,8 @@ versions of Apache Tomcat<sup>®</su
<option value="11.0.5">11.0.5</option>
<option value="11.0.6">11.0.6</option>
<option value="11.0.7">11.0.7</option>
- <option value="11.0.8" selected="selected">11.0.8</option>
+ <option value="11.0.8">11.0.8</option>
+ <option value="11.0.9" selected="selected">11.0.9</option>
<option value="HEAD">trunk (unreleased)</option>
</select></label>
</p>
Modified: tomcat/site/trunk/xdocs/oldnews.xml
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/oldnews.xml?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/xdocs/oldnews.xml (original)
+++ tomcat/site/trunk/xdocs/oldnews.xml Fri Jul 4 20:00:26 2025
@@ -29,6 +29,38 @@
<li><a href="oldnews-2010.html">year 2010</a></li>
</ul>
</section>
+
+<section name="Tomcat 11.0.8 Released" rtext="2025-06-09">
+<p>
+The Apache Tomcat Project is proud to announce the release of version 11.0.8
+of Apache Tomcat. This release implements specifications that are part of the
+Jakarta EE 11 platform.</p>
+<p>Users of Tomcat 10 onwards should be aware that, as a result of the move
from
+Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
+Foundation, the primary package for all implemented APIs has changed from
+<code>javax.*</code> to <code>jakarta.*</code>. This will almost certainly
+require code changes to enable applications to migrate from Tomcat 9 and
earlier
+to Tomcat 10 and later. A
+<a href="https://github.com/apache/tomcat-jakartaee-migration";>migration
+tool</a> is available to aid this process.</p>
+<p>The notable changes in this release are:</p>
+<ul>
+<li>Provide finer grained control of multi-part request processing via two
+ new attributes on the Connector element.</li>
+<li>Mark the JSP wrapper for reload after a failed compilation.</li>
+<li>Update Tomcat Native to 2.0.9 including Windows binaries built with
+ OpenSSL 3.5.0.</li>
+</ul>
+<p>
+Full details of these changes, and all the other changes, are available in the
+<a href="tomcat-11.0-doc/changelog.html#Tomcat_11.0.8_(markt)">Tomcat 11
+changelog</a>.
+</p>
+<p style="text-align: center;">
+<a href="download-11.cgi">Download</a>
+</p>
+</section>
+
<section name="Tomcat 10.1.42 Released" rtext="2025-06-09">
<p>
The Apache Tomcat Project is proud to announce the release of version 10.1.42
@@ -46,7 +78,6 @@ migration tool for Jakarta EE tool</a> w
<ul>
<li>Provide finer grained control of multi-part request processing via two
new attributes on the Connector element.</li>
-
<li>Mark the JSP wrapper for reload after a failed compilation.</li>
<li>Update Tomcat Native to 2.0.9 including Windows binaries built with
Modified: tomcat/site/trunk/xdocs/security-9.xml
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/security-9.xml?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/xdocs/security-9.xml (original)
+++ tomcat/site/trunk/xdocs/security-9.xml Fri Jul 4 20:00:26 2025
@@ -50,6 +50,46 @@
<toc/>
</section>
+ <section name="Fixed in Apache Tomcat 9.0.107" rtext="2025-07-XXX">
+
+ <p><strong>Important: Dos with HTTP/2 and APR/Native</strong>
+ <cve>CVE-2025-52434</cve></p>
+
+ <p></p>
+
+ <p>This was fixed with commit
+ <hashlink hash="8a83c3c42d20762782678932c14005cd3397a018"/>.</p>
+
+ <p>The issue was made public on XXX July 2025.</p>
+
+ <p>Affects: 9.0.0.M1 to 9.0.106</p>
+
+ <p><strong>Important: DoS due to overflow in file upload limit</strong>
+ <cve>CVE-2025-52520</cve></p>
+
+ <p></p>
+
+ <p>This was fixed with commit
+ <hashlink hash="927d66fbc294cb65242102b817a45fd80834e040"/>.</p>
+
+ <p>The issue was made public on XXX July 2025.</p>
+
+ <p>Affects: 9.0.0.M1 to 9.0.106</p>
+
+ <p><strong>Important: DoS via excessive HTTP/2 streams</strong>
+ <cve>CVE-2025-53506</cve></p>
+
+ <p></p>
+
+ <p>This was fixed with commit
+ <hashlink hash="434772930f362145516dd60681134e7f0cf8115b"/>.</p>
+
+ <p>The issue was made public on XXX July 2025.</p>
+
+ <p>Affects: 9.0.0.M1 to 9.0.106</p>
+
+ </section>
+
<section name="Fixed in Apache Tomcat 9.0.106" rtext="2025-06-10">
<p><strong>Moderate: Security constraint bypass for PreResources and
Modified: tomcat/site/trunk/xdocs/whichversion.xml
URL:
http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/whichversion.xml?rev=1926961&r1=1926960&r2=1926961&view=diff
==============================================================================
--- tomcat/site/trunk/xdocs/whichversion.xml (original)
+++ tomcat/site/trunk/xdocs/whichversion.xml Fri Jul 4 20:00:26 2025
@@ -42,7 +42,7 @@ specifications</a> and the respective Ap
<td>3.1</td>
<td>3.0</td>
<td>11.0.x</td>
- <td>11.0.8</td>
+ <td>11.0.9</td>
<td>17 and later</td>
</tr>
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
