Overview
Request 101114 accepted
- partially fix bnc#727543 - VUL-0: Apache tomcat vulnerable to hash collision attack
backport upstream changes:
* generic CSRF protection layer (to have FilterBase needed for
FailedRequestFilter)
http://svn.apache.org/viewvc?view=revision&revision=1030547
* add getCharset method for B2Converter
http://svn.apache.org/viewvc?view=revision&revision=1140904
* add isConfigProblemFatal method
http://svn.apache.org/viewvc?view=revision&revision=1199122
*parameter processing performance is NOT applied - optimization is too
complicated right now
- fix bnc#712784 - tomcat6: add missing Requires on java >= 1.6.0
* add recommends on java >= 1.6.0 and java-devel >= 1.6.0
Request History
lijews created request
- partially fix bnc#727543 - VUL-0: Apache tomcat vulnerable to hash collision attack
backport upstream changes:
* generic CSRF protection layer (to have FilterBase needed for
FailedRequestFilter)
http://svn.apache.org/viewvc?view=revision&revision=1030547
* add getCharset method for B2Converter
http://svn.apache.org/viewvc?view=revision&revision=1140904
* add isConfigProblemFatal method
http://svn.apache.org/viewvc?view=revision&revision=1199122
*parameter processing performance is NOT applied - optimization is too
complicated right now
- fix bnc#712784 - tomcat6: add missing Requires on java >= 1.6.0
* add recommends on java >= 1.6.0 and java-devel >= 1.6.0
lijews accepted request