Apache Tomcat官网普通更新(2020-04-08)

情报来源:TSRC

发布时间:2020-04-08

基本信息
  • 发布日期2020-04-08
  • 感知时间2020-04-08
  • 漏洞类型普通更新
  • 风险等级未知
  • 更新版本9.0.34
  • 情报贡献TSRC
更新标题

Tomcat 9.0.34 Released

更新详情

<br> - Add support for default values when using ${...} property<br> replacement in configuration files. Based on a pull request provided by<br> Bernd Bohmann.<br> - When configuring an HTTP Connector, warn if the encoding specified for<br> URIEncoding is not a superset of US-ASCII as required by RFC<br> 7230.<br> - Replace the system property<br> org.apache.tomcat.util.buf.UDecoder.ALLOW_ENCODED_SLASH with<br> the Connector attribute encodedSolidusHandling that adds an<br> additional option to pass the %2f sequence through to the<br> application without decoding it in addition to rejecting such sequences and<br> decoding such sequences.

软件描述

Apache Tomcat是一款开放源码的JSP应用服务器程序

CVE编号

null

Knowsafe分析

暂无

业界资讯

暂无

来源链接

http://tomcat.apache.org/