https://bz.apache.org/bugzilla/show_bug.cgi?id=69486
--- Comment #4 from Chen Jp <ch...@msn.com> --- For those reusable resources, when the current request processing is completed or abnormally interrupted, if possible, intermediate data (which were serving for current service lifecycle) purging in the resource recycle phase may very helpful to avoiding potential data leak. Next request/response cycle will not able to obtains context of previous service round. It's a defensive pattern, need trade off but nice to have. Because there are so many occurrences to manipulate ByteBuffer/Message/... directly, very hard to ensure every ops is secure and exceptions are handled properly. Otherwise, wait for next information disclosure issue and fix them later. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
