CVE-2023-41081 Apache Tomcat Connectors (mod_jk) Authentication Bypass
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
- Apache Tomcat Connectors mod_jk Connector 1.2.0 to 1.2.48
Description:
In some circumstances, such as when a configuration included
"JkOptions
CVE-2023-41081 Apache Tomcat Connectors (mod_jk) Authentication Bypass
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
- Apache Tomcat Connectors mod_jk Connector 1.2.0 to 1.2.48
Description:
In some circumstances, such as when a configuration included
"JkOptions
Mark,
On 9/28/23 09:56, Mark Thomas wrote:
Version 1.2.39 includes the following changes compared to 1.2.38
- Fix optionalNoCA support (always disable OCSP)
- The windows binaries in this release have been built with OpenSSL
3.0.11 and APR 1.7.4
The proposed release artifacts can be found
Mark,
On 9/27/23 12:59, Mark Thomas wrote:
The key differences of version 2.0.6 compared to 2.0.5 are:
- Fix optionalNoCA support (always disable OCSP)
- The windows binaries in this release have been built with OpenSSL
3.0.11 and APR 1.7.4
The 2.0.x branch is primarily intended for use
https://bz.apache.org/bugzilla/show_bug.cgi?id=67538
Michael Osipov changed:
What|Removed |Added
CC||micha...@apache.org
--- Comment #2
Version 1.2.39 includes the following changes compared to 1.2.38
- Fix optionalNoCA support (always disable OCSP)
- The windows binaries in this release have been built with OpenSSL
3.0.11 and APR 1.7.4
The proposed release artifacts can be found at [1],
and the build was done using tag [2].
Author: markt
Date: Thu Sep 28 13:51:42 2023
New Revision: 64248
Log:
Upload Tomcat Native 1.2.39 for voting
Added:
dev/tomcat/tomcat-connectors/native/1.2.39/
dev/tomcat/tomcat-connectors/native/1.2.39/binaries/
https://bz.apache.org/bugzilla/show_bug.cgi?id=67538
--- Comment #1 from Konstantin Kolinko ---
It is supported in Ant 1.9 as well (since 1.9.10):
https://ant.apache.org/manual-1.9.x/Tasks/conditions.html
Where do you want to place this test, and what version to check?
Compilation is expected
https://bz.apache.org/bugzilla/show_bug.cgi?id=67538
Bug ID: 67538
Summary: Make use of Ant's task to enfore the
mininum Java build version
Product: Tomcat 11
Version: unspecified
Hardware: All
OS: All
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to tag 1.2.39
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
commit 4547fa071f6de5581fa0ca3838454784fa3b5dc6
Author: Mark Thomas
AuthorDate: Thu Sep 28 12:57:56 2023 +0100
Tag
This is an automated email from the ASF dual-hosted git repository.
markt pushed a change to tag 1.2.39
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
at 4547fa071 (commit)
This tag includes the following new commits:
new 4547fa071 Tag 1.2.39
The 1 revisions
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 1.2.x
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
The following commit(s) were added to refs/heads/1.2.x by this push:
new f3e14e44d Align recommended APR version
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
The following commit(s) were added to refs/heads/main by this push:
new 88e5c0d78 Not everyone has the same aliases I
On Wed, Sep 27, 2023 at 7:00 PM Mark Thomas wrote:
>
> The key differences of version 2.0.6 compared to 2.0.5 are:
>
> - Fix optionalNoCA support (always disable OCSP)
> - The windows binaries in this release have been built with OpenSSL
>3.0.11 and APR 1.7.4
>
> The 2.0.x branch is primarily
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 1.2.x
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
The following commit(s) were added to refs/heads/1.2.x by this push:
new 9fecb0f95 Align with 9.0.x
9fecb0f95 is
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 1.2.x
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
commit 5069c633290d823c2c89a8f64bfb2735b938b51a
Author: Mark Thomas
AuthorDate: Thu Sep 28 12:18:41 2023 +0100
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 1.2.x
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
commit dd89296c52628d83f56d1bcb687c395f6f38cc43
Author: Mark Thomas
AuthorDate: Thu Sep 28 12:17:14 2023 +0100
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 1.2.x
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
commit 6fd7830adaa603c8dce63d28b1f5aad49d251383
Author: Mark Thomas
AuthorDate: Thu Sep 28 12:15:31 2023 +0100
Need
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 1.2.x
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
commit b570920531e4f8ca170c005d21c66c5691c76e26
Author: Mark Thomas
AuthorDate: Wed Sep 27 14:39:09 2023 +0100
Keep
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 1.2.x
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
commit ec4badaba02cae818e4b3268217e0faf7c2e5493
Author: Mark Thomas
AuthorDate: Thu Sep 28 12:16:36 2023 +0100
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch 1.2.x
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
commit b72febd808ada281bcaa73fd3118d85f0199054e
Author: Mark Thomas
AuthorDate: Thu Sep 28 12:11:15 2023 +0100
This is an automated email from the ASF dual-hosted git repository.
markt pushed a change to branch 1.2.x
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
from f40a85500 Update patch for OpenSSL 3.0.11
new b72febd80 Update ignores
new 6fd7830ad Need to switch
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
The following commit(s) were added to refs/heads/main by this push:
new 246d15ad1 Increment version number for next
This is an automated email from the ASF dual-hosted git repository.
remm pushed a commit to branch 8.5.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/8.5.x by this push:
new 29aaefd294 Make stats volatile
29aaefd294 is
This is an automated email from the ASF dual-hosted git repository.
remm pushed a commit to branch 9.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/9.0.x by this push:
new 15927d1794 Make stats volatile
15927d1794 is
This is an automated email from the ASF dual-hosted git repository.
remm pushed a commit to branch 10.1.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/10.1.x by this push:
new 0c80e28724 Make stats volatile
0c80e28724 is
This is an automated email from the ASF dual-hosted git repository.
remm pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/main by this push:
new 86febbe9e2 Make stats volatile
86febbe9e2 is
27 matches
Mail list logo
