/[Apache-SVN]
ViewVC logotype

Revision 781382

Jump to revision: Previous Next
Author: markt
Date: Wed Jun 3 14:02:06 2009 UTC (5 months, 3 weeks ago)
Changed paths: 4
Log Message: 
Fix NPE / information disclosure issue that allowed user enumeration with FORM auth.
This is CVE-2009-0580.

Changed paths:

Path Details
Directorytomcat/container/branches/tc4.1.x/RELEASE-NOTES-4.1.txt modified , text changed
Directorytomcat/container/branches/tc4.1.x/catalina/src/share/org/apache/catalina/realm/DataSourceRealm.java modified , text changed
Directorytomcat/container/branches/tc4.1.x/catalina/src/share/org/apache/catalina/realm/JDBCRealm.java modified , text changed
Directorytomcat/container/branches/tc4.1.x/catalina/src/share/org/apache/catalina/realm/MemoryRealm.java modified , text changed
apache@apache.org
 ViewVC Help
Powered by ViewVC 1.1.2