2011年9月 2日

[installer 2932] Apache Tomcat 7.0.21

Apache Tomcat 7.0.21 出ています。

セキュリティホールの修正が含まれています。
http://tomcat.apache.org/security-7.html
参照のこと。

☆ Apache Tomcat 7.0.21
http://tomcat.apache.org/

http://archive.apache.org/dist/tomcat/tomcat-7/v7.0.21/src/apache-tomcat-7.0.21-src.tar.gz

Tomcat 7.0.21 (markt)
Catalina
* 41718: Include a response body when sending a redirect. (markt)
* 51640: Improve the memory leak prevention for leaks triggered by
java.sql.DriverManager. (markt)
* 51644: Fix annotation scanning for contexts with a multi-level
context path such as /a/b. (markt)
* Unregisters MBean of DataSource when web application stops. (kfujino)
* 51650: Code clean-up. Patch provided by Felix Schumacher. (markt)
* 51653: Move application level error page handling from the Host to
the Context. This ensures that application error page handling is
completed before the requestDestroyed event of any
ServletRequestListener is fired. (markt)
* 51654: Improve handling of invalid appBase settings for Host elements.
(markt)
* 51658: Fix possible NPE when logging a failed request. Based on a
suggestion by Felix Schumacher. (markt)
* 51688: JreMemoryLeakPreventionListener now protects against AWT
thread creation. (schultz)
* 51712: Ensure cache control headers are sent when appropriate even
if the request is secure. Patch provided by Michael Zampani. (markt)
* 51713: Improve message that is logged if there is an error in the
value of protocol in a Connector. (kkolinko)
* 51739: When using a landing page with FORM authentication ensure
that the request has a valid HTTP method. (markt)

Coyote
* 51641: Use correct key when removing processor instances from the
connections map during clean-up. Patch provided by zhh. (mark)
* More changes to align the code between the different HTTP
connectors. (markt)
* Ensure AjpMessage headers are correct for the direction of the
message. (markt)
* Code clean-up and re-factoring to reduce duplicate code in the AJP
processor implementations. (markt)
* Detect incomplete AJP messages and reject the associated request if
one is found. (markt)
* 51698: Fix CVE-2011-3190. Prevent AJP message injection. (markt)


Jasper
* 41673: Use platform line-endings when reporting compilation errors.
(markt)

Cluster
* 51736: Make rpcTimeout configurable in BackupManager. (kfujino)

Web applications
* 51649: Update the documentation web application to include the
ThreadLocal leak prevention listener. (markt)

Other
* 51583 (1157874, 1162102): Fix shutdown delay in jdbc-pool.
(fhanik/kkolinko)
* 51558: Don't force the use of StandardManager when using any of the
Tomcat#addWebapp() methods. (markt)
* 51704: Make use of File#mkdirs() more robust. (markt)

----
こがよういちろう


投稿者 xml-rpc : 2011年9月 2日 17:15
役に立ちました?:
過去のフィードバック 平均:(0) 総合:(0) 投票回数:(0)
本記事へのTrackback: http://hoop.euqset.org/blog/mt-tb2006.cgi/105994
トラックバック
コメント
コメントする




画像の中に見える文字を入力してください。