users  

Messages by Thread

• [ANN] Apache Tomcat 10.1.44 Available Christopher Schultz
• [SECURITY] Upcoming updates to recent(ish)Tomcat CVEs Mark Thomas
• [ANN] Apache Tomcat 11.0.10 Available Mark Thomas
• HotSwapAgent with jdk17+ Mark Gordon
• [ANN] Apache Tomcat 9.0.108 available Rémy Maucherat
• Tomcat 9.0.87 not releasing or re-using the pooled connections. Parameshwara Bhat
  • Tomcat 9.0.87 not releasing or re-using the pooled connections. Parameshwara Bhat
  • Re: Tomcat 9.0.87 not releasing or re-using the pooled connections. Christopher Schultz
• How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Mark Thomas
  • RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Rob Sargent
  • Re: How to access a REST service Thorsten Heit
  • RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Christopher Schultz
  • RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Rob Sargent
  • RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Rob Sargent
  • RE: How to access a REST service Harri Pesonen
  • Re: [OT] How to access a REST service Christopher Schultz
  • RE: How to access a REST service Daniel Schwartz
  • Re: [EXTERNAL EMAIL] RE: How to access a REST service Niranjan Rao
  • RE: [EXTERNAL EMAIL] RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Christopher Schultz
  • RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Robert Turner
  • RE: How to access a REST service Daniel Schwartz
  • RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Chuck Caldarale
  • RE: How to access a REST service Daniel Schwartz
  • RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Robert Turner
  • RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Rob Sargent
  • RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Thorsten Heit
  • RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Clint Carrion
  • RE: How to access a REST service Daniel Schwartz
  • Re: How to access a REST service Rob Sargent
  • RE: How to access a REST service Daniel Schwartz
  • RE: How to access a REST service Daniel Schwartz
  • RE: How to access a REST service Daniel Schwartz
• Re: Tomcat maxConnections API Nitish Chitta
  • Re: Tomcat maxConnections API Mark Thomas
  • Re: Tomcat maxConnections API Nitish Chitta
  • Re: Tomcat maxConnections API Christopher Schultz
  • Re: Tomcat maxConnections API Nitish Chitta
• memory leak analysis Mircea Butmalai
  • Re: memory leak analysis Chuck Caldarale
  • RE: memory leak analysis Gregg, John E.
  • Re: memory leak analysis Mircea Butmalai
  • Re: memory leak analysis Chuck Caldarale
  • Re: memory leak analysis Zdeněk Henek
  • Re: memory leak analysis Christopher Schultz
  • Re: memory leak analysis Mircea Butmalai
  • Re: memory leak analysis Zdeněk Henek
  • Re: memory leak analysis Mircea Butmalai
• Tomcat 10.1.43 causing SSL "Your connection is not private" error for internal URLs behind F5 Pooja Sharma
  • Re: Tomcat 10.1.43 causing SSL "Your connection is not private" error for internal URLs behind F5 Mark Thomas
• tomcat 9.0.99 question Gihan Rajapaksha
• [SECURITY INQUIRY] CVE-2025-52520: Regarding "Unlikely Configurations of Multipart Upload" that are Affected 加治屋　一輝
  • Re: [SECURITY INQUIRY] CVE-2025-52520: Regarding "Unlikely Configurations of Multipart Upload" that are Affected Mark Thomas
  • Re: [SECURITY INQUIRY] CVE-2025-52520: Regarding "Unlikely Configurations of Multipart Upload" that are Affected 加治屋　一輝
  • Re: [SECURITY INQUIRY] CVE-2025-52520: Regarding "Unlikely Configurations of Multipart Upload" that are Affected Mark Thomas
  • Re: [SECURITY INQUIRY] CVE-2025-52520: Regarding "Unlikely Configurations of Multipart Upload" that are Affected 加治屋　一輝
• Fwd: Tomcat 10.1.13 - z17 Compatibility Brian Proffitt
  • Re: Tomcat 10.1.13 - z17 Compatibility Dimitris Soumis
  • Re: Tomcat 10.1.13 - z17 Compatibility Christopher Schultz
• Apache Tomcat 11 TLSCertificateReloadListener S Abirami
  • RE: Apache Tomcat 11 TLSCertificateReloadListener S Abirami
  • Re: Apache Tomcat 11 TLSCertificateReloadListener Rémy Maucherat
  • RE: Apache Tomcat 11 TLSCertificateReloadListener S Abirami
• Corruption of files uploaded with Safari when Tomcat has HTTP/2 enabled Clint Carrion
  • Re: Corruption of files uploaded with Safari when Tomcat has HTTP/2 enabled Clint Carrion
• URL callback Ragavendhiran Bhiman (rabhiman)
  • Re: URL callback Robert Turner
• Server Vulnerabilities for Apache Tomcat 9.0.0.M1 < 9.0.98 Jacobs, Hassan
  • Re: Server Vulnerabilities for Apache Tomcat 9.0.0.M1 < 9.0.98 Robert Turner
  • Re: Server Vulnerabilities for Apache Tomcat 9.0.0.M1 < 9.0.98 Christopher Schultz
• RHEL 10 Compatibility for Apache HTTP Server (httpd) – All Versions Cheruku, B.R. (Bharath)
• RHEL 10 Compatibility for Apache Tomcat 8.x, 9.x, 10.x, and 11.x Cheruku, B.R. (Bharath)
  • Re: RHEL 10 Compatibility for Apache Tomcat 8.x, 9.x, 10.x, and 11.x Christopher Schultz
  • Re: RHEL 10 Compatibility for Apache Tomcat 8.x, 9.x, 10.x, and 11.x Cheruku, B.R. (Bharath)
  • Re: RHEL 10 Compatibility for Apache Tomcat 8.x, 9.x, 10.x, and 11.x Christopher Schultz
  • Re: RHEL 10 Compatibility for Apache Tomcat 8.x, 9.x, 10.x, and 11.x Coty Sutherland
• [SECURITY] CVE-2025-52520 Apache Tomcat - DoS in multipart upload [CORRECTION] Christopher Schultz
• [SECURITY] CVE-2025-53506 Apache Tomcat - DoS in HTP/2 Mark Thomas
  • [SECURITY] CVE-2025-53506 Apache Tomcat - DoS in HTP/2 Mark Thomas
• [SECURITY] CVE-2025-52520 Apache Tomcat - DoS in multipart upload Mark Thomas
  • Re: [EXTERNAL] [SECURITY] CVE-2025-52520 Apache Tomcat - DoS in multipart upload Joey Cochran
  • Re: [EXTERNAL] [SECURITY] CVE-2025-52520 Apache Tomcat - DoS in multipart upload Christopher Schultz
  • [SECURITY] CVE-2025-52520 Apache Tomcat - DoS in multipart upload Mark Thomas
  • Re: [SECURITY] CVE-2025-52520 Apache Tomcat - DoS in multipart upload Christopher Schultz
• [SECURITY] CVE-2025-52434 Apache Tomcat -APR/native Connector crash leading to DoS Mark Thomas
• I have some Java Version Confusion Alan Masters
  • Re: I have some Java Version Confusion Christopher Schultz
• POST parameters chopped Hrvoje Lončar
  • Re: POST parameters chopped Martin Konicsek
  • Re: POST parameters chopped Hrvoje Lončar
  • Re: POST parameters chopped Christopher Schultz
  • Re: POST parameters chopped Hrvoje Lončar
  • Re: POST parameters chopped Christopher Schultz
  • Re: POST parameters chopped Hrvoje Lončar
  • Re: POST parameters chopped Christopher Schultz
  • Re: POST parameters chopped Hrvoje Lončar
  • Re: POST parameters chopped Christopher Schultz
  • Re: POST parameters chopped Hrvoje Lončar
• Content negotiation for Accept-Language (static pages)? Fab Stz
  • Re: Content negotiation for Accept-Language (static pages)? Christopher Schultz
  • Re: Content negotiation for Accept-Language (static pages)? Fab Stz
  • Re: Content negotiation for Accept-Language (static pages)? Christopher Schultz
  • Re: Content negotiation for Accept-Language (static pages)? Fab Stz
  • Re: Content negotiation for Accept-Language (static pages)? Christopher Schultz
• [ANN] Apache Tomcat 9.0.107 available Rémy Maucherat
• [ANN] Apache Tomcat 11.0.9 Available Mark Thomas
• [ANN] Apache Tomcat 10.1.43 Available Christopher Schultz
• Restricting POST request size in Tomcat S Abirami
  • Re: Restricting POST request size in Tomcat Martin Konicsek
• Apache Tomcat 10.1.42 Cache-Control header changed when added security-constraint with transport-guarantee CONFIDENTIAL Rolandas Karosas | Edrana Baltic
  • Re: Apache Tomcat 10.1.42 Cache-Control header changed when added security-constraint with transport-guarantee CONFIDENTIAL Mark Thomas
  • Re: Apache Tomcat 10.1.42 Cache-Control header changed when added security-constraint with transport-guarantee CONFIDENTIAL Rolandas Karosas | Edrana Baltic
  • Re: Apache Tomcat 10.1.42 Cache-Control header changed when added security-constraint with transport-guarantee CONFIDENTIAL Mark Thomas
• Classloading has a long delay after idle period Daniel Sheridan
  • Re: Classloading has a long delay after idle period Christopher Schultz
  • RE: Classloading has a long delay after idle period Daniel Sheridan
  • Re: Classloading has a long delay after idle period Christopher Schultz
  • RE: Classloading has a long delay after idle period Daniel Sheridan
  • Re: Classloading has a long delay after idle period Christopher Schultz
  • RE: Classloading has a long delay after idle period Daniel Sheridan
  • RE: Classloading has a long delay after idle period Gregg, John E. via users
  • RE: Classloading has a long delay after idle period Daniel Sheridan
  • Re: Classloading has a long delay after idle period Mark Thomas
  • RE: Classloading has a long delay after idle period Daniel Sheridan
  • Re: Classloading has a long delay after idle period Christopher Schultz
  • RE: Classloading has a long delay after idle period Daniel Sheridan
  • Re: Classloading has a long delay after idle period Rainer Jung
  • RE: Classloading has a long delay after idle period Daniel Sheridan
  • Re: Classloading has a long delay after idle period Mark Thomas
  • RE: Classloading has a long delay after idle period Daniel Sheridan
  • Re: Classloading has a long delay after idle period Mark Thomas
  • RE: Classloading has a long delay after idle period Daniel Sheridan
• elasticsearch-7.17.13 jar file Download Pramod Kumar Adhi
  • Re: elasticsearch-7.17.13 jar file Download Chuck Caldarale
  • RE: elasticsearch-7.17.13 jar file Download Pramod Kumar Adhi
  • AW: elasticsearch-7.17.13 jar file Download Thomas Hoffmann (Speed4Trade GmbH)
• Servlet 6.2 / Tomcat 12 - Welcome files Mark Thomas
  • Re: Servlet 6.2 / Tomcat 12 - Welcome files Rémy Maucherat
  • Re: Servlet 6.2 / Tomcat 12 - Welcome files Mark Thomas
  • Re: Servlet 6.2 / Tomcat 12 - Welcome files Tim Funk
  • Re: Servlet 6.2 / Tomcat 12 - Welcome files Mark Thomas
  • Re: Servlet 6.2 / Tomcat 12 - Welcome files Mark Thomas
  • Re: Servlet 6.2 / Tomcat 12 - Welcome files Christopher Schultz
• Need confirmation about CVE-2025-48988 impacting Tomcat 9.0.10x related to CVE-2025-48976. Charpe, Anil
  • Re: Need confirmation about CVE-2025-48988 impacting Tomcat 9.0.10x related to CVE-2025-48976. Rémy Maucherat
  • Need confirmation about CVE-2025-48988 impacting Tomcat 9.0.10x related to CVE-2025-48976. Charpe, Anil
• CSRF not working with 10.1.42 but it works with 10.1.39 Hrvoje Lončar
  • Re: CSRF not working with 10.1.42 but it works with 10.1.39 Mark Thomas
  • Re: CSRF not working with 10.1.42 but it works with 10.1.39 Hrvoje Lončar
  • Re: CSRF not working with 10.1.42 but it works with 10.1.39 Mark Thomas
  • Re: CSRF not working with 10.1.42 but it works with 10.1.39 Hrvoje Lončar
  • Re: CSRF not working with 10.1.42 but it works with 10.1.39 Maxim Solodovnik
  • Re: CSRF not working with 10.1.42 but it works with 10.1.39 Hrvoje Lončar
  • Re: CSRF not working with 10.1.42 but it works with 10.1.39 Hrvoje Lončar
  • Re: CSRF not working with 10.1.42 but it works with 10.1.39 Mark Thomas
  • Re: CSRF not working with 10.1.42 but it works with 10.1.39 Hrvoje Lončar
  • Re: CSRF not working with 10.1.42 but it works with 10.1.39 Mark Thomas
• Updating configTest to include shutdown port validation Amit Pande
  • Re: Updating configTest to include shutdown port validation Mark Thomas
  • Re: Updating configTest to include shutdown port validation Amit Pande
  • Re: Updating configTest to include shutdown port validation Christopher Schultz
  • Re: SUSPICIOUS Re: Updating configTest to include shutdown port validation Amit Pande
  • Updating configTest to include shutdown port validation Amit Pande
• Bugzilla now requires authentication Mark Thomas
• Tomcat GC overhead limit issue version-9.0.102. Raviteja Karanam
  • Re: Tomcat GC overhead limit issue version-9.0.102. Mark Thomas
• Unexpected behavior of dead-simple servlet Christopher Schultz
  • Re: Unexpected behavior of dead-simple servlet Mark Thomas
  • Re: Unexpected behavior of dead-simple servlet Christopher Schultz
  • Re: Unexpected behavior of dead-simple servlet Christopher Schultz
  • Re: Unexpected behavior of dead-simple servlet Konstantin Kolinko
  • Re: Unexpected behavior of dead-simple servlet Christopher Schultz
  • Re: Unexpected behavior of dead-simple servlet Mark Thomas
• ThreadDump_p1lg512486.txt Ramesh B R
  • Re: ThreadDump_p1lg512486.txt Mark Thomas
• Problem after tomcat upgrade Stephen Booth
  • Re: Problem after tomcat upgrade Mark Thomas
  • Re: Problem after tomcat upgrade Stephen Booth
• [SECURITY] CVE-2025-49125 Apache Tomcat - Security constraint bypass for pre/post-resources Mark Thomas
  • RE: [SECURITY] CVE-2025-49125 Apache Tomcat - Security constraint bypass for pre/post-resources Marco Krammer
• [SECURITY] CVE-2025-49124 Apache Tomcat - Side-loading via Tomcat installer for Windows Mark Thomas
• [SECURITY] CVE-2025-48988 Apache Tomcat - DoS in multipart upload Mark Thomas
• [SECURITY] CVE-2025-48976 Apache Tomcat - DoS in Commons FileUpload Mark Thomas
• TLS 1.3 and post handshake authentication (PHA) Amit Pande
  • TLS 1.3 and post handshake authentication (PHA) Amit Pande
  • Re: TLS 1.3 and post handshake authentication (PHA) Mark Thomas
  • Re: TLS 1.3 and post handshake authentication (PHA) Amit Pande
• FileCountLimitExceededException with 10.1.42 / 11.0.8 Matthias Reischenbacher
  • FileCountLimitExceededException with 10.1.42 / 11.0.8 Matthias Reischenbacher

• Earlier messages