/[Apache-SVN]
ViewVC logotype

Revision 1767683


Jump to revision: Previous Next
Author: markt
Date: Wed Nov 2 13:59:15 2016 UTC (8 years, 1 month ago)
Changed paths: 8
Log Message:
Add additional checks for valid characters to the HTTP request line
parsing so invalid request lines are rejected sooner.
This is the fix for CVE-2016-6816

Changed paths

Path Details
Directorytomcat/tc6.0.x/trunk/ modified , props changed
Directorytomcat/tc6.0.x/trunk/java/org/apache/coyote/http11/AbstractInputBuffer.java modified , text changed
Directorytomcat/tc6.0.x/trunk/java/org/apache/coyote/http11/InternalAprInputBuffer.java modified , text changed
Directorytomcat/tc6.0.x/trunk/java/org/apache/coyote/http11/InternalInputBuffer.java modified , text changed
Directorytomcat/tc6.0.x/trunk/java/org/apache/coyote/http11/InternalNioInputBuffer.java modified , text changed
Directorytomcat/tc6.0.x/trunk/java/org/apache/coyote/http11/LocalStrings.properties modified , text changed
Directorytomcat/tc6.0.x/trunk/java/org/apache/tomcat/util/http/parser/HttpParser.java modified , text changed
Directorytomcat/tc6.0.x/trunk/webapps/docs/changelog.xml modified , text changed

infrastructure at apache.org
ViewVC Help
Powered by ViewVC 1.1.26