The proposed Apache Tomcat 11.0.23 release is now available for voting.
The notable changes compared to 11.0.22 include:
- Align the rewrite conditions ornext flag processing with
mod_rewrite, which follows a purely sequential evaluation
strategy.
- Ensure that malformed HTTP/2 messages that should trigger a
stream reset do so, rather than triggered a connection close.
- Add replay protection to the EncryptInterceptor. This is a
breaking change for the EncryptInterceptor.
For full details, see the change log:
https://nightlies.apache.org/tomcat/tomcat-11.0.x/docs/changelog.html
Applications that run on Tomcat 9 and earlier will not run on Tomcat 11
without changes. Java EE applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee directory and Tomcat
will automatically convert them to Jakarta EE and copy them to the
webapps directory. Applications using deprecated APIs may require
further changes.
It can be obtained from:
https://dist.apache.org/repos/dist/dev/tomcat/tomcat-11/v11.0.23/
The Maven staging repo is:
https://repository.apache.org/content/repositories/orgapachetomcat-1594
The tag is:
https://github.com/apache/tomcat/tree/11.0.23
b5c1bba61f2e54875bd6d538ae145fffd7b217a8
The proposed 11.0.23 release is:
[ ] -1 Broken - do not release
[ ] +1 Stable - go ahead and release as 11.0.23
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
