Add a new limit, defaulting to 2MB, for the amount of data Tomcat will swallow for an aborted upload. This is the fix for CVE-2014-0230