/[Apache-SVN]
ViewVC logotype

Revision 936540

Jump to revision: Previous Next
Author: markt
Date: Wed Apr 21 22:12:05 2010 UTC (14 years, 2 months ago)
Changed paths: 5
Log Message: 
Fix CVE-2010-1157.
Prevent possible disclosure of host name or IP address via the HTTP WWW-Authenticate header when using BASIC or DIGEST authentication.

Changed paths

Path Details
Directorytomcat/tc6.0.x/trunk/java/org/apache/catalina/authenticator/AuthenticatorBase.java modified , text changed
Directorytomcat/tc6.0.x/trunk/java/org/apache/catalina/authenticator/BasicAuthenticator.java modified , text changed
Directorytomcat/tc6.0.x/trunk/java/org/apache/catalina/authenticator/DigestAuthenticator.java modified , text changed
Directorytomcat/tc6.0.x/trunk/webapps/docs/changelog.xml modified , text changed
Directorytomcat/tc6.0.x/trunk/webapps/docs/realm-howto.xml modified , text changed
infrastructure at apache.org
 ViewVC Help
Powered by ViewVC 1.1.26