资产安全
商业安全
安全服务
返回基本信息
- 发布日期2020-12-08
- 感知时间2020-12-08
- 漏洞类型普通更新
- 风险等级未知
- 更新版本9.0.41
- 情报贡献TSRC
更新标题
Tomcat 9.0.41 Released
更新详情
<br/> - Align the behaviour of ServletContext.getRealPath(String path)<br/> with the recent clarification from the Servlet specification project. If the<br/> path parameter does not start with / then Tomcat processes the<br/> call as if / is appended to the beginning of the provided path.<br/> <br/> - Fix a potential file descriptor leak when WebSocket connections are<br/> attempted and fail. Patch provided by Maurizio Adami.<br/> - Ensure that the LoadBalancerDrainingValve uses the correct setting<br/> for the secure attribute for any session cookies it creates. Based on<br/> a pull request by Andreas Kurth.
软件描述
Apache Tomcat是一款开放源码的JSP应用服务器程序
CVE编号
暂无
Knowsafe分析
暂无
业界资讯
暂无
来源链接
http://tomcat.apache.org/
微信扫码关注公众号
