Re: svn commit: r661653 - /tomcat/connectors/trunk/jni/xdocs/miscellaneous/changelog.xml

[EMAIL PROTECTED] wrote: Author: mturk Date: Fri May 30 04:25:04 2008 New Revision: 661653 URL: http://svn.apache.org/viewvc?rev=661653&view=rev Log: Add note to changelog about BZ45071 Modified: tomcat/connectors/trunk/jni/xdocs/miscellaneous/changelog.xml Thanks I missed the file name i

Re: svn commit: r660175 - in /tomcat/connectors/trunk/jni: CHANGELOG.txt native/src/poll.c

Mladen Turk wrote: jean-frederic clere wrote: [EMAIL PROTECTED] wrote: Author: mturk Date: Mon May 26 05:42:11 2008 New Revision: 660175 URL: http://svn.apache.org/viewvc?rev=660175&view=rev Log: Fix 45071 by updating ttl for signaled but not removed sockets Modified: tomcat/connectors/tr

DO NOT REPLY [Bug 45108] JSPX source containing "&" renders "&" in output page

https://issues.apache.org/bugzilla/show_bug.cgi?id=45108 Julian Reschke <[EMAIL PROTECTED]> changed: What|Removed |Added CC||[EMAIL PROTECT

DO NOT REPLY [Bug 45108] JSPX source containing "&" renders "&" in output page

https://issues.apache.org/bugzilla/show_bug.cgi?id=45108 --- Comment #4 from Julian Reschke <[EMAIL PROTECTED]> 2008-06-02 05:09:28 PST --- Ampersands in content need to be escaped, both in HTML and XML. This isn't even a validity, but an XML-wellformedness error. -- Configure bugmail: h

DO NOT REPLY [Bug 45102] IllegalStateException getting HttpSession from HttpServletRequest

https://issues.apache.org/bugzilla/show_bug.cgi?id=45102 Mark Thomas <[EMAIL PROTECTED]> changed: What|Removed |Added Status|NEW |NEEDINFO ---

DO NOT REPLY [Bug 45108] JSPX source containing "&" renders "&" in output page

https://issues.apache.org/bugzilla/show_bug.cgi?id=45108 Simon Gibbs <[EMAIL PROTECTED]> changed: What|Removed |Added Status|RESOLVED|REOPENED

svn commit: r662582 - /tomcat/trunk/java/org/apache/catalina/manager/host/HTMLHostManagerServlet.java

Author: markt Date: Mon Jun 2 14:41:28 2008 New Revision: 662582 URL: http://svn.apache.org/viewvc?rev=662582&view=rev Log: Fix potential XSS in host-manager. This is CVE-2008-1947. Modified: tomcat/trunk/java/org/apache/catalina/manager/host/HTMLHostManagerServlet.java Modified: tomcat/t

svn commit: r662583 - /tomcat/container/tc5.5.x/webapps/host-manager/WEB-INF/classes/org/apache/catalina/hostmanager/HTMLHostManagerServlet.java

Author: markt Date: Mon Jun 2 14:41:36 2008 New Revision: 662583 URL: http://svn.apache.org/viewvc?rev=662583&view=rev Log: Fix potential XSS in host-manager. This is CVE-2008-1947. Modified: tomcat/container/tc5.5.x/webapps/host-manager/WEB-INF/classes/org/apache/catalina/hostmanager/HTMLH

svn commit: r662584 - in /tomcat/site/trunk: docs/security-5.html docs/security-6.html xdocs/security-5.xml xdocs/security-6.xml

Author: markt Date: Mon Jun 2 14:42:03 2008 New Revision: 662584 URL: http://svn.apache.org/viewvc?rev=662584&view=rev Log: Document potential XSS in host-manager. This is CVE-2008-1947. Modified: tomcat/site/trunk/docs/security-5.html tomcat/site/trunk/docs/security-6.html tomcat/si

svn commit: r662585 - /tomcat/tc6.0.x/trunk/java/org/apache/catalina/manager/host/HTMLHostManagerServlet.java

Author: markt Date: Mon Jun 2 14:44:22 2008 New Revision: 662585 URL: http://svn.apache.org/viewvc?rev=662585&view=rev Log: Fix potential XSS in host-manager. This is CVE-2008-1947. Modified: tomcat/tc6.0.x/trunk/java/org/apache/catalina/manager/host/HTMLHostManagerServlet.java Modified:

[SECURITY] CVE-2008-1947: Tomcat host-manager XSS vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 CVE-2008-1947: Tomcat host-manager XSS vulnerability Severity: Low Vendor: The Apache Software Foundation Versions Affected: Tomcat 5.5.9 to 5.5.26 Tomcat 6.0.0 to 6.0.16 This issue has been fixed in the source repositories for each version and wi

DO NOT REPLY [Bug 43327] Socket bind fails on tomcat startup when using apr

https://issues.apache.org/bugzilla/show_bug.cgi?id=43327 Siegmund Gorr <[EMAIL PROTECTED]> changed: What|Removed |Added CC||[EMAIL PROTECTE