.gz=/srv/gump/public/workspace/apache-commons/daemon/dist/bin/commons-daemon-20160222-native-src.tar.gz
-Dexamples.sources.skip=true
-Djdt.jar=/srv/gump/packages/eclipse/plugins/R-4.5-201506032000/ecj-4.5.jar
-Dtest.apr.loc=/srv/gump/public/workspace/tomcat-native-trunk/dest-20160222/lib
-Dt
jar=/srv/gump/public/workspace/junit/target/junit-4.13-SNAPSHOT.jar
-Dobjenesis.jar=/srv/gump/public/workspace/objenesis/main/target/objenesis-2.3-SNAPSHOT.jar
-Dexamples.sources.skip=true
-Dcommons-daemon.jar=/srv/gump/public/workspace/apache-commons/daemon/dist/commons-daemon-20160222.jar
-
https://bz.apache.org/bugzilla/show_bug.cgi?id=59010
--- Comment #5 from Rashmi ---
I think the same configuration is used on Linux as well. We are using the same
code sample attached in the first comment on both servers and the jre is also
the same.
--
You are receiving this mail because:
You
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
CVE-2015-5345 Apache Tomcat Directory disclosure
Severity: Low
Vendor: The Apache Software Foundation
Versions Affected:
- - Apache Tomcat 6.0.0 to 6.0.44
- - Apache Tomcat 7.0.0 to 7.0.66
- - Apache Tomcat 8.0.0.RC1 to 8.0.29
- - Apache Tomcat 9.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
CVE-2015-5174 Apache Tomcat Limited Directory Traversal
Severity: Low
Vendor: The Apache Software Foundation
Versions Affected:
- - Apache Tomcat 6.0.0 to 6.0.44
- - Apache Tomcat 7.0.0 to 7.0.64
- - Apache Tomcat 8.0.0.RC1 to 8.0.26
- - Apache To
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
CVE-2015-5351 Apache Tomcat CSRF token leak
Severity: Moderate
Vendor: The Apache Software Foundation
Versions Affected:
- - Apache Tomcat 7.0.1 to 7.0.67
- - Apache Tomcat 8.0.0.RC1 to 8.0.31
- - Apache Tomcat 9.0.0.M1
Description:
The index pag
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
CVE-2016-0706 Apache Tomcat Security Manager bypass
Severity: Low
Vendor: The Apache Software Foundation
Versions Affected:
- - Apache Tomcat 6.0.0 to 6.0.44
- - Apache Tomcat 7.0.0 to 7.0.67
- - Apache Tomcat 8.0.0.RC1 to 8.0.30
- - Apache Tomcat
Author: markt
Date: Mon Feb 22 11:21:42 2016
New Revision: 1731626
URL: http://svn.apache.org/viewvc?rev=1731626&view=rev
Log:
Announcements for 7 CVEs
Modified:
tomcat/site/trunk/docs/index.html
tomcat/site/trunk/docs/security-6.html
tomcat/site/trunk/docs/security-7.html
tomcat/
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
CVE-2016-0714 Apache Tomcat Security Manager Bypass
Severity: Moderate
Vendor: The Apache Software Foundation
Versions Affected:
- - Apache Tomcat 6.0.0 to 6.0.44
- - Apache Tomcat 7.0.0 to 7.0.67
- - Apache Tomcat 8.0.0.RC1 to 8.0.30
- - Apache T
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
CVE-2016-0763 Apache Tomcat Security Manager Bypass
Severity: Moderate
Vendor: The Apache Software Foundation
Versions Affected:
- - Apache Tomcat 7.0.0 to 7.0.67
- - Apache Tomcat 8.0.0.RC1 to 8.0.30
- - Apache Tomcat 9.0.0.M1 to 9.0.0.M2
Descri
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
CVE-2015-5346 Apache Tomcat Session fixation
Severity: Low
Vendor: The Apache Software Foundation
Versions Affected:
- - Apache Tomcat 7.0.5 to 7.0.65
- - Apache Tomcat 8.0.0.RC1 to 8.0.30
- - Apache Tomcat 9.0.0.M1
Description:
When recycling th
Author: markt
Revision: 1696280
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:39:06 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:39:06 2016
@@ -1,3 +1,4 @@
Fix Javadoc
Separate test cases into
Author: markt
Revision: 1696284
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:40:24 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:40:24 2016
@@ -1,3 +1,4 @@
Fix Javadoc
Separate test cases into
Author: markt
Revision: 1700896
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:39:25 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:39:25 2016
@@ -1 +1,2 @@
More normalization edge cases
+This is
Author: markt
Revision: 1700897
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:40:06 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:40:06 2016
@@ -1 +1,2 @@
More normalization edge cases
+This is
Author: markt
Revision: 1700898
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:40:42 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:40:42 2016
@@ -1 +1,2 @@
More normalization edge cases
+This is
Author: markt
Revision: 1700900
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:41:11 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:41:11 2016
@@ -1 +1 @@
-Update proposal
+This is the fix for CVE-
Author: markt
Revision: 1696281
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:39:48 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:39:48 2016
@@ -1,3 +1,4 @@
Fix Javadoc
Separate test cases into
Author: markt
Revision: 1715206
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:43:22 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:43:22 2016
@@ -1 +1,2 @@
Move the functionality that provides re
Author: markt
Revision: 1716882
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:43:40 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:43:40 2016
@@ -3,3 +3,4 @@ With mapperContextRootRedirectEnabled
Author: markt
Revision: 1715207
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:44:21 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:44:21 2016
@@ -1 +1,2 @@
Move the functionality that provides re
Author: markt
Revision: 1716894
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:43:59 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:43:59 2016
@@ -1,2 +1,3 @@
Additional fix for BZ 58660
When Map
Author: markt
Revision: 1717209
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:45:04 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:45:04 2016
@@ -3,3 +3,4 @@ With mapperContextRootRedirectEnabled
Author: markt
Revision: 1715213
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:45:32 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:45:32 2016
@@ -1 +1,2 @@
Move the functionality that provides re
Author: markt
Revision: 1717212
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:46:02 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:46:02 2016
@@ -3,3 +3,4 @@ With mapperContextRootRedirectEnabled
Author: markt
Revision: 1715216
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:46:18 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:46:18 2016
@@ -1 +1,2 @@
Move the functionality that provides re
Author: markt
Revision: 1717216
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:46:34 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:46:34 2016
@@ -3,3 +3,4 @@ With mapperContextRootRedirectEnabled
Author: markt
Revision: 1723506
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:53:36 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:53:36 2016
@@ -1,2 +1,3 @@
Fix https://bz.apache.org/bugzilla/sh
Author: markt
Revision: 1713185
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:53:20 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:53:20 2016
@@ -1 +1,2 @@
Handle the unlikely case where differen
Author: markt
Revision: 1723414
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:53:03 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:53:03 2016
@@ -1,2 +1,3 @@
Fix https://bz.apache.org/bugzilla/sh
Author: markt
Revision: 1720660
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:57:28 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:57:28 2016
@@ -1 +1,2 @@
Don't create sessions unnecessarily in
Author: markt
Revision: 1713187
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:53:56 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:53:56 2016
@@ -1 +1,2 @@
Handle the unlikely case where differen
Author: markt
Revision: 1720658
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:57:14 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:57:14 2016
@@ -1 +1,2 @@
Don't create sessions unnecessarily in
Author: markt
Revision: 1720655
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:57:00 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:57:00 2016
@@ -1 +1,2 @@
-Don't create session unnecessarily in t
https://bz.apache.org/bugzilla/show_bug.cgi?id=58486
--- Comment #5 from Luke Woodward ---
I have a bug number for the report now: JDK-8146961.
--
You are receiving this mail because:
You are the assignee for the bug.
-
To uns
Author: markt
Revision: 1713184
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:52:44 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:52:44 2016
@@ -1 +1,2 @@
Handle the unlikely case where differen
Author: markt
Revision: 1720661
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:57:44 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:57:44 2016
@@ -1 +1,2 @@
Don't create sessions unnecessarily in
Author: markt
Revision: 1720663
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:57:56 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:57:56 2016
@@ -1 +1,2 @@
Don't create sessions unnecessarily in
Author: markt
Revision: 1722799
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:59:03 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:59:03 2016
@@ -1 +1,2 @@
Add the StatusManagerServlet to the lis
Author: markt
Revision: 1722801
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:59:27 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:59:27 2016
@@ -1 +1,2 @@
Add the StatusManagerServlet to the lis
Author: markt
Revision: 1722802
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:59:41 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:59:41 2016
@@ -1 +1,2 @@
Add the StatusManagerServlet to the lis
Author: markt
Revision: 1722800
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:59:16 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:59:16 2016
@@ -1 +1,2 @@
Add the StatusManagerServlet to the lis
Author: markt
Revision: 1720652
Modified property: svn:log
Modified: svn:log at Mon Feb 22 11:56:45 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 11:56:45 2016
@@ -1 +1,2 @@
Don't create session unnecessarily in t
Author: markt
Date: Mon Feb 22 12:11:07 2016
New Revision: 1731628
URL: http://svn.apache.org/viewvc?rev=1731628&view=rev
Log:
Correction. The regressions in the original fix for CVE-2015-5345 were not
addressed until 7.0.68
Modified:
tomcat/site/trunk/docs/security-7.html
tomcat/site/tr
On 22 February 2016 at 11:23, Mark Thomas wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> CVE-2015-5345 Apache Tomcat Directory disclosure
>
> Severity: Low
>
> Vendor: The Apache Software Foundation
>
> Versions Affected:
> - - Apache Tomcat 6.0.0 to 6.0.44
> - - Apache Tomcat 7.0.
Author: markt
Revision: 1725263
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:16:05 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:16:05 2016
@@ -2,3 +2,4 @@ Expand the session attribute filtering
Author: markt
Revision: 1727166
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:18:05 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:18:05 2016
@@ -2,3 +2,4 @@ Expand the session attribute filtering
Author: markt
Revision: 1725926
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:18:56 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:18:56 2016
@@ -1 +1,2 @@
Protect initialization of ResourceLinkF
Author: markt
Revision: 1726203
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:16:57 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:16:57 2016
@@ -1,2 +1,3 @@
When using the new sessionAttributeVa
Author: markt
Revision: 1725914
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:16:23 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:16:23 2016
@@ -1,2 +1,3 @@
When using the new sessionAttributeVa
Author: markt
Revision: 1727034
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:17:47 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:17:47 2016
@@ -1,3 +1,3 @@
When using the new sessionAttributeVa
Author: markt
Revision: 1726923
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:17:12 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:17:12 2016
@@ -2,3 +2,4 @@ Expand the session attribute filtering
Author: markt
Revision: 1726196
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:16:40 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:16:40 2016
@@ -2,3 +2,4 @@ Expand the session attribute filtering
Author: markt
Revision: 1727034
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:17:33 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:17:33 2016
@@ -1,2 +1,3 @@
When using the new sessionAttributeVa
Author: markt
Revision: 1725929
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:19:12 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:19:12 2016
@@ -1 +1,2 @@
Protect initialization of ResourceLinkF
Author: markt
Revision: 1727182
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:18:21 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:18:21 2016
@@ -1,2 +1,3 @@
When using the new sessionAttributeVa
Author: markt
Revision: 1725931
Modified property: svn:log
Modified: svn:log at Mon Feb 22 12:19:25 2016
--
--- svn:log (original)
+++ svn:log Mon Feb 22 12:19:25 2016
@@ -1 +1,2 @@
Protect initialization of ResourceLinkF
Author: markt
Date: Mon Feb 22 12:30:11 2016
New Revision: 1731632
URL: http://svn.apache.org/viewvc?rev=1731632&view=rev
Log:
Fix typo
Modified:
tomcat/site/trunk/docs/security-6.html
tomcat/site/trunk/docs/security-7.html
tomcat/site/trunk/docs/security-8.html
tomcat/site/trunk/
Author: markt
Date: Mon Feb 22 13:18:59 2016
New Revision: 1731638
URL: http://svn.apache.org/viewvc?rev=1731638&view=rev
Log:
Improve descriptions. In particular, make it clear when an issue only impact
users running untrusted web applications under a security manager.
Modified:
tomcat/site
https://bz.apache.org/bugzilla/show_bug.cgi?id=59043
Roberto Benedetti changed:
What|Removed |Added
OS||All
CC|
https://bz.apache.org/bugzilla/show_bug.cgi?id=59043
Bug ID: 59043
Summary: SingleSignOn valve warns about missing session when
invoking HttpServletRequest.logout
Product: Tomcat 8
Version: 8.0.32
Hardware: PC
S
Am 22.02.2016 um 16:52 schrieb Matip Ma Teha Louis Blaise:
Good evening everyone,
I have a problem with tomcat, in fact I installed Tomcat 6 on a server
that has 12 GB of RAM, and tomcat allows me to use only about 2GB to 12GB.
therefore I would like to know if there is not a solution to it to
Author: markt
Date: Mon Feb 22 17:33:09 2016
New Revision: 1731697
URL: http://svn.apache.org/viewvc?rev=1731697&view=rev
Log:
OpenSSL master has removed support for 23 ciphers
Modified:
tomcat/trunk/test/org/apache/tomcat/util/net/openssl/ciphers/TesterOpenSSL.java
Modified:
tomcat/trunk/
https://bz.apache.org/bugzilla/show_bug.cgi?id=57830
--- Comment #8 from Axel Fontaine ---
+1
--
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.or
Author: markt
Date: Mon Feb 22 20:09:49 2016
New Revision: 1731732
URL: http://svn.apache.org/viewvc?rev=1731732&view=rev
Log:
Don't want to persist the Loader.domain attribute
Modified:
tomcat/trunk/java/org/apache/catalina/storeconfig/server-registry.xml
Modified: tomcat/trunk/java/org/apa
Author: markt
Date: Mon Feb 22 20:14:36 2016
New Revision: 1731733
URL: http://svn.apache.org/viewvc?rev=1731733&view=rev
Log:
Add the RFC6265 cookie processor
Modified:
tomcat/trunk/java/org/apache/catalina/storeconfig/server-registry.xml
Modified: tomcat/trunk/java/org/apache/catalina/stor
Author: markt
Date: Mon Feb 22 20:19:15 2016
New Revision: 1731734
URL: http://svn.apache.org/viewvc?rev=1731734&view=rev
Log:
Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=48674
Implement an option within the Host Manager web pplication to persist the
current configuration.
Based on a patch
Author: markt
Date: Mon Feb 22 20:22:38 2016
New Revision: 1731735
URL: http://svn.apache.org/viewvc?rev=1731735&view=rev
Log:
Restore correct array size after r1731734
Modified:
tomcat/trunk/java/org/apache/catalina/manager/host/HTMLHostManagerServlet.java
Modified:
tomcat/trunk/java/org/
https://bz.apache.org/bugzilla/show_bug.cgi?id=48674
Mark Thomas changed:
What|Removed |Added
Status|NEW |RESOLVED
Resolution|---
https://bz.apache.org/bugzilla/show_bug.cgi?id=59001
--- Comment #6 from Mark Thomas ---
I really wanted to fix this but I'm not sure that supporting this use case is
worth the cost.
There are two places I have found (so far) where changes would be required. The
first is during start-up to ensur
https://bz.apache.org/bugzilla/show_bug.cgi?id=57830
--- Comment #9 from Christopher Schultz ---
I think Daniel Ruggeri did some work on this. He's been waiting for some
feedback from me. Maybe I should get on that!
--
You are receiving this mail because:
You are the assignee for the bug.
To whom it may engage...
This is an automated request, but not an unsolicited one. For
more information please visit http://gump.apache.org/nagged.html,
and/or contact the folk at gene...@gump.apache.org.
Project tomcat-native-make has an issue affecting its community integration.
This
72 matches
Mail list logo
