- 发布日期2020-04-08
- 感知时间2020-04-08
- 漏洞类型普通更新
- 风险等级未知
- 更新版本9.0.34
- 情报贡献TSRC
Tomcat 9.0.34 Released
<br> - Add support for default values when using ${...} property<br> replacement in configuration files. Based on a pull request provided by<br> Bernd Bohmann.<br> - When configuring an HTTP Connector, warn if the encoding specified for<br> URIEncoding is not a superset of US-ASCII as required by RFC<br> 7230.<br> - Replace the system property<br> org.apache.tomcat.util.buf.UDecoder.ALLOW_ENCODED_SLASH with<br> the Connector attribute encodedSolidusHandling that adds an<br> additional option to pass the %2f sequence through to the<br> application without decoding it in addition to rejecting such sequences and<br> decoding such sequences.
Apache Tomcat是一款开放源码的JSP应用服务器程序
null
暂无
暂无
http://tomcat.apache.org/