[Bug 64017] Apache http server 2.4.41 - Issue with transfer-encoding

https://bz.apache.org/bugzilla/show_bug.cgi?id=64017 --- Comment #2 from Vinoth --- Thanks i removed packet size from tomcat and apache. Post that when i try to hit the apache url am getting below error using curl and browser it shows "SyntaxError: JSON.parse: unexpected end of data" on

[Bug 64017] Apache http server 2.4.41 - Issue with transfer-encoding

https://bz.apache.org/bugzilla/show_bug.cgi?id=64017 Rainer Jung changed: What|Removed |Added Assignee|b...@httpd.apache.org |dev@tomcat.apache.org

[Bug 64007] a deadlock with Poller run and cancelledKey

https://bz.apache.org/bugzilla/show_bug.cgi?id=64007 --- Comment #7 from echo --- yes. thank you for your patient answer.I don't have a correct way to test. Just pressure test and it's hard to reproduce the bug fixed or not. -- You are receiving this mail because: You are the assignee for the

[Bug 51663] Apache Tomcat 502 Bad Gate Error

https://bz.apache.org/bugzilla/show_bug.cgi?id=51663 Sidharth changed: What|Removed |Added CC||spal...@rbbn.com -- You are receiving

[Bug 63985] Tomcat 9 does not read UTF-8 files with no bom correctly

https://bz.apache.org/bugzilla/show_bug.cgi?id=63985 --- Comment #3 from Christopher Schultz --- (In reply to Hubert Gailly from comment #2) > Same text is saved in UTF8 in 2 separate files one with BOM, one without BOM. > All the declared as UTF-8. > In Apache 'httpd.conf' : AddDefaultCharset

[tomcat] branch master updated: Fix typos

This is an automated email from the ASF dual-hosted git repository. markt pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/master by this push: new 4dab3f2 Fix typos 4dab3f2 is described below

svn commit: r37280 - /release/tomcat/tomcat-7/.idea/

Author: violetagg Date: Wed Dec 18 15:56:59 2019 New Revision: 37280 Log: Remove files added by mistake Removed: release/tomcat/tomcat-7/.idea/ - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional

svn commit: r37279 - /release/tomcat/tomcat-7/tomcat-release.iml

Author: violetagg Date: Wed Dec 18 15:55:52 2019 New Revision: 37279 Log: Remove files added by mistake Removed: release/tomcat/tomcat-7/tomcat-release.iml - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For

svn commit: r37278 - in /release/tomcat/tomcat-7: .idea/ .idea/misc.xml .idea/modules.xml .idea/vcs.xml .idea/workspace.xml tomcat-release.iml v7.0.96/

Author: violetagg Date: Wed Dec 18 15:49:20 2019 New Revision: 37278 Log: Remove 7.0.96 Added: release/tomcat/tomcat-7/.idea/ release/tomcat/tomcat-7/.idea/misc.xml (with props) release/tomcat/tomcat-7/.idea/modules.xml (with props) release/tomcat/tomcat-7/.idea/vcs.xml

[ANN] Apache Tomcat 7.0.99 released

The Apache Tomcat team announces the immediate availability of Apache Tomcat 7.0.99. Apache Tomcat is an open source software implementation of the Java Servlet, JavaServer Pages, Java Expression Language and Java WebSocket technologies. This release contains a number of bug fixes and

svn commit: r1871757 - in /tomcat/site/trunk: docs/tomcat-7.0-doc/ docs/tomcat-7.0-doc/annotationapi/ docs/tomcat-7.0-doc/annotationapi/javax/ docs/tomcat-7.0-doc/annotationapi/javax/annotation/ docs/

Author: violetagg Date: Wed Dec 18 15:37:38 2019 New Revision: 1871757 URL: http://svn.apache.org/viewvc?rev=1871757=rev Log: Update docs for Apache Tomcat 7.0.99 release. [This commit notification would consist of 492 parts, which exceeds the limit of 50 ones, so it was shortened to the

[SECURITY] CVE-2019-12418 Local Privilege Escalation

CVE-2019-12418 Local Privilege Escalation Severity: Moderate Vendor: The Apache Software Foundation Versions Affected: Apache Tomcat 9.0.0.M1 to 9.0.28 Apache Tomcat 8.5.0 to 8.5.47 Apache Tomcat 7.0.0 to 7.0.97 Description: When Tomcat is configured with the JMX Remote Lifecycle Listener, a

[SECURITY] CVE-2019-17563 Session fixation

CVE-2019-17563 Session fixation Severity: Low Vendor: The Apache Software Foundation Versions Affected: Apache Tomcat 9.0.0.M1 to 9.0.29 Apache Tomcat 8.5.0 to 8.5.49 Apache Tomcat 7.0.0 to 7.0.98 Description: When using FORM authentication there was a narrow window where an attacker could

svn commit: r1871756 - in /tomcat/site/trunk: docs/security-7.html docs/security-8.html docs/security-9.html xdocs/security-7.xml xdocs/security-8.xml xdocs/security-9.xml

Author: markt Date: Wed Dec 18 15:35:48 2019 New Revision: 1871756 URL: http://svn.apache.org/viewvc?rev=1871756=rev Log: CVE-2019-12418 and CVE-2019-17563 Modified: tomcat/site/trunk/docs/security-7.html tomcat/site/trunk/docs/security-8.html tomcat/site/trunk/docs/security-9.html

svn commit: r1871753 - in /tomcat/site/trunk: ./ docs/ xdocs/

Author: violetagg Date: Wed Dec 18 15:01:01 2019 New Revision: 1871753 URL: http://svn.apache.org/viewvc?rev=1871753=rev Log: Updates (excluding docs) for 7.0.99 release Modified: tomcat/site/trunk/build.properties.default tomcat/site/trunk/docs/doap_Tomcat.rdf

[Bug 64007] a deadlock with Poller run and cancelledKey

https://bz.apache.org/bugzilla/show_bug.cgi?id=64007 --- Comment #6 from Remy Maucherat --- Looking at the most recent JDK sources, the root issue likely has been fixed by these commits which remove all the unwanted internal NIO syncing:

[Bug 64011] JNDIRealm no longer authenticates to LDAP

https://bz.apache.org/bugzilla/show_bug.cgi?id=64011 --- Comment #3 from Michael Osipov --- (In reply to Mike Lothian from comment #2) > I got the info from here: > > https://tomcat.apache.org/tomcat-8.5-doc/config/realm.html > > spnegoDelegationQop This attribute should be a comma-separated

[tomcat] branch master updated: Correct dates (fingers were on auto-pilot)

This is an automated email from the ASF dual-hosted git repository. markt pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/master by this push: new 2a046cd Correct dates (fingers were on

[tomcat] branch 7.0.x updated: Deprecate the JmxRemoteLifecycleListener

This is an automated email from the ASF dual-hosted git repository. markt pushed a commit to branch 7.0.x in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/7.0.x by this push: new 81fb6d6 Deprecate the JmxRemoteLifecycleListener

[tomcat] branch 8.5.x updated: Deprecate the JmxRemoteLifecycleListener

This is an automated email from the ASF dual-hosted git repository. markt pushed a commit to branch 8.5.x in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/8.5.x by this push: new afbe415 Deprecate the JmxRemoteLifecycleListener

[tomcat] branch master updated: Deprecate the JmxRemoteLifecycleListener

This is an automated email from the ASF dual-hosted git repository. markt pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/master by this push: new 07a44db Deprecate the

[Bug 64005] NullPointerException in Tomcat 8.5.50 from java.util.zip.ZipFile.getEntry

https://bz.apache.org/bugzilla/show_bug.cgi?id=64005 --- Comment #8 from Vlad Mencl --- Thanks for the quick fix! -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail:

[Bug 64007] a deadlock with Poller run and cancelledKey

https://bz.apache.org/bugzilla/show_bug.cgi?id=64007 --- Comment #5 from Remy Maucherat --- Ok. If you run again into a deadlock, please add the updated deadlock traces as an attachment to the BZ (otherwise it's harder to read). -- You are receiving this mail because: You are the assignee for

[Bug 64007] a deadlock with Poller run and cancelledKey

https://bz.apache.org/bugzilla/show_bug.cgi?id=64007 --- Comment #4 from echo --- I will test first. If there is progress i will recommend agin -- You are receiving this mail because: You are the assignee for the bug. - To