资产安全
商业安全
安全服务
返回- 发布日期2023-01-13
- 感知时间2023-01-13
- 漏洞类型普通更新
- 风险等级未知
- 更新版本9.0.71
- 情报贡献TSRC
Tomcat 9.0.71 Released
<br/> - Correct a regression in the refactoring that replaced the use of the<br/> URL constructors. The regression broke lookups for resources that<br/> contained one or more characters in their name that required escaping<br/> when used in a URI path.<br/> - When resetting an HTTP/2 stream because the final response has been<br/> generated before the request has been fully read, use the HTTP/2 error<br/> code NO_ERROR so that client does not discard the response. Based on a<br/> suggestion by Lorenzo Dalla Vecchia.<br/> - Change the default of the org.apache.el.GET_CLASSLOADER_USE_PRIVILEGED<br/> system property to true unless the EL library is running on Tomcat in<br/> which case the default remains false as the EL library is already<br/> called from within a privileged block and skipping the unnecessary<br/> privileged block improves performance.
Apache Tomcat是一款开放源码的JSP应用服务器程序
暂无
暂无
暂无
http://tomcat.apache.org/
微信扫码关注公众号
