/[Apache-SVN]
ViewVC logotype

Revision 1758494


Jump to revision: Previous Next
Author: markt
Date: Tue Aug 30 22:43:56 2016 UTC (8 years, 3 months ago)
Changed paths: 7
Log Message:
Ignore some JSP options when running under a SecurityManager
This is the fix for CVE-2016-6796

Changed paths

Path Details
Directorytomcat/tc8.0.x/trunk/ modified , props changed
Directorytomcat/tc8.0.x/trunk/conf/web.xml modified , text changed
Directorytomcat/tc8.0.x/trunk/java/org/apache/jasper/EmbeddedServletOptions.java modified , text changed
Directorytomcat/tc8.0.x/trunk/java/org/apache/jasper/resources/LocalStrings.properties modified , text changed
Directorytomcat/tc8.0.x/trunk/java/org/apache/jasper/servlet/JspServlet.java modified , text changed
Directorytomcat/tc8.0.x/trunk/webapps/docs/changelog.xml modified , text changed
Directorytomcat/tc8.0.x/trunk/webapps/docs/jasper-howto.xml modified , text changed

infrastructure at apache.org
ViewVC Help
Powered by ViewVC 1.1.26