/[Apache-SVN]
ViewVC logotype

Revision 936541

Jump to revision: Previous Next
Author: markt
Date: Wed Apr 21 22:13:26 2010 UTC (14 years, 2 months ago)
Changed paths: 5
Log Message: 
Fix CVE-2010-1157.
Prevent possible disclosure of host name or IP address via the HTTP WWW-Authenticate header when using BASIC or DIGEST authentication.

Changed paths

Path Details
Directorytomcat/tc5.5.x/trunk/container/catalina/src/share/org/apache/catalina/authenticator/AuthenticatorBase.java modified , text changed
Directorytomcat/tc5.5.x/trunk/container/catalina/src/share/org/apache/catalina/authenticator/BasicAuthenticator.java modified , text changed
Directorytomcat/tc5.5.x/trunk/container/catalina/src/share/org/apache/catalina/authenticator/DigestAuthenticator.java modified , text changed
Directorytomcat/tc5.5.x/trunk/container/webapps/docs/changelog.xml modified , text changed
Directorytomcat/tc5.5.x/trunk/container/webapps/docs/realm-howto.xml modified , text changed
infrastructure at apache.org
 ViewVC Help
Powered by ViewVC 1.1.26