[Bug 68119] Significant overhead in javax.el.CompositeELResolver.convertToType

https://bz.apache.org/bugzilla/show_bug.cgi?id=68119 Anurag Dubey changed: What|Removed |Added CC||anura...@amazon.com -- You are receivi

Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

Le 18/12/2023 à 18:00, Mark Thomas a écrit : Am I understanding this request correctly? Mostly, but for the context, if ever that makes it morally more acceptable, Freexian here is merely a vehicle to found independent contributors to work and maintain old packages, it's nothing like a RedH

Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

Le 18/12/2023 à 18:15, Michael Osipov a écrit : SCNR: https://unixsheikh.com/articles/the-delusions-of-debian.html That's a low blow, this post smells more like an old systemd rant mixed with a complete misunderstanding on how Debian works than a well founded criticism. Emmanuel Bourg --

Re: [PR] Csrf filter improvements [tomcat]

michael-o commented on code in PR #681: URL: https://github.com/apache/tomcat/pull/681#discussion_r1430461949 ## java/org/apache/catalina/filters/CsrfPreventionFilter.java: ## @@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends CsrfPreventionFilterBase { private

Re: [PR] Csrf filter improvements [tomcat]

michael-o commented on code in PR #681: URL: https://github.com/apache/tomcat/pull/681#discussion_r1430459964 ## java/org/apache/catalina/filters/CsrfPreventionFilter.java: ## @@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends CsrfPreventionFilterBase { private

Re: [PR] Csrf filter improvements [tomcat]

markt-asf commented on code in PR #681: URL: https://github.com/apache/tomcat/pull/681#discussion_r1430459910 ## java/org/apache/catalina/filters/CsrfPreventionFilter.java: ## @@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends CsrfPreventionFilterBase { private

Re: [PR] Csrf filter improvements [tomcat]

isapir commented on code in PR #681: URL: https://github.com/apache/tomcat/pull/681#discussion_r1430457497 ## java/org/apache/catalina/filters/CsrfPreventionFilter.java: ## @@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends CsrfPreventionFilterBase { private St

Re: [PR] Csrf filter improvements [tomcat]

ChristopherSchultz commented on code in PR #681: URL: https://github.com/apache/tomcat/pull/681#discussion_r1430451465 ## java/org/apache/catalina/filters/CsrfPreventionFilter.java: ## @@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends CsrfPreventionFilterBase {

Re: [PR] Csrf filter improvements [tomcat]

ChristopherSchultz commented on code in PR #681: URL: https://github.com/apache/tomcat/pull/681#discussion_r1430450663 ## java/org/apache/catalina/filters/CsrfPreventionFilter.java: ## @@ -53,6 +58,25 @@ public class CsrfPreventionFilter extends CsrfPreventionFilterBase {

Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

On 2023/12/18 17:00:43 Mark Thomas wrote: > On 17/12/2023 16:32, Sean Whitton wrote: > > Hello, > > > > I am working to backport the fix for CVE-2023-46589 to Tomcat version > > 8.0.14, which is what we have in Debian "jessie". This is under the > > Extended LTS project for older Debian releases,

Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

On 17/12/2023 16:32, Sean Whitton wrote: Hello, I am working to backport the fix for CVE-2023-46589 to Tomcat version 8.0.14, which is what we have in Debian "jessie". This is under the Extended LTS project for older Debian releases, run by Freexian SARL.

(tomcat) branch main updated: Cleanup error reporting

This is an automated email from the ASF dual-hosted git repository. remm pushed a commit to branch main in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/main by this push: new d7d18b87b9 Cleanup error reporting d7d18b87b9 is descr

Re: [PR] [WIP] initial implementation of webresource based on path API [tomcat]

KoteswararaoGundapaneni commented on PR #630: URL: https://github.com/apache/tomcat/pull/630#issuecomment-1860268262 Any valid update regarding the work status of this -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use t