dev  

Messages by Thread

• Re: [PR] Adds the possibility to change the USE_TLS_RESPONSE HTTP response [tomcat] via GitHub
  • Re: [PR] Adds the possibility to change the USE_TLS_RESPONSE HTTP response [tomcat] via GitHub
• (tomcat) branch 9.0.x updated: Fix RAT warnings on CI build markt
• (tomcat) branch 10.1.x updated: Fix RAT warnings on CI build markt
• (tomcat) branch 11.0.x updated: Fix RAT warnings on CI build markt
• (tomcat) branch 9.0.x updated: No longer need this file markt
• (tomcat) branch 10.1.x updated: No longer need this file markt
• (tomcat) branch 11.0.x updated: No longer need this file markt
• [Bug 69817] Add sub-millisecond precision capability to access log timestamps bugzilla
  • [Bug 69817] Add sub-millisecond precision capability to access log timestamps bugzilla
• (tomcat) branch main updated: Fix RAT warnings on CI build markt
• (tomcat) branch main updated: Remove deprecated code markt
• (tomcat) branch 9.0.x updated: Optimise conversion of HTTP/2 header field names to lower case markt
• (tomcat) branch 10.1.x updated: Optimise conversion of HTTP/2 header field names to lower case markt
• (tomcat) branch 11.0.x updated: Optimise conversion of HTTP/2 header field names to lower case markt
• (tomcat) branch main updated: Don't always force to lower case in deprecated method markt
• (tomcat) branch 11.0.x updated: Fix an edge case HTTP/2 HPACK header decoding bug markt
• (tomcat) branch 9.0.x updated: Fix an edge case HTTP/2 HPACK header decoding bug markt
• (tomcat) branch 10.1.x updated: Fix an edge case HTTP/2 HPACK header decoding bug markt
• (tomcat) branch main updated (9de3e3e68f -> 4bca3055ff) markt
  • (tomcat) 01/02: Move to correct location markt
  • (tomcat) 02/02: Optimise conversion of HTTP/2 header field names to lower case markt
• (tomcat) branch main updated: Fix an edge case HTTP/2 HPACK header decoding bug markt
• (tomcat-maven-plugin) branch trunk updated: Add wait goal remm
• [PR] Fix populate a malformed remote ip / host header value by remote ip valve (filter) [tomcat] via GitHub
  • Re: [PR] Fix populate a malformed remote ip / host header value by remote ip valve (filter) [tomcat] via GitHub
• Re: [PR] Enhanced version.sh and version.bat Output [tomcat] via GitHub
• State of the Maven plugin Rémy Maucherat
  • Re: State of the Maven plugin Mark Thomas
  • Re: State of the Maven plugin Rémy Maucherat
  • Re: State of the Maven plugin Christopher Schultz
  • Re: State of the Maven plugin Rémy Maucherat
  • Re: State of the Maven plugin Christopher Schultz
• (tomcat-maven-plugin) branch trunk updated: Type hierarchy improvements remm
• Clarification on Tomcat 9.1 Release Timeline and Support Plans somasani nikhil
  • Re: Clarification on Tomcat 9.1 Release Timeline and Support Plans Rémy Maucherat
• (tomcat-maven-plugin) branch trunk updated: Docs updates remm
• (tomcat-maven-plugin) branch trunk updated: Remove outdated link remm
• (tomcat-maven-plugin) branch trunk updated: Fix path remm
• (tomcat-maven-plugin) branch trunk updated: Fix branch name remm
• (tomcat-maven-plugin) branch trunk updated: Add action remm
• (tomcat-maven-plugin) branch trunk updated: Tie the version number to a specific Tomcat version remm
• (tomcat-maven-plugin) branch trunk updated: Revert Maven version here too remm
• (tomcat-maven-plugin) branch trunk updated: Drop manager test remm
• (tomcat-maven-plugin) branch trunk updated: Revert Maven upgrade remm
• (tomcat-maven-plugin) branch trunk updated: Update remm
• (tomcat-maven-plugin) branch dependabot/maven/mavenVersion-3.9.14 deleted (was b584bbe) github-bot
• (tomcat-maven-plugin) branch trunk updated (755c5e4 -> 1b237f7) remm
  • (tomcat-maven-plugin) 01/01: Merge pull request #119 from apache/dependabot/maven/mavenVersion-3.9.14 remm
• (tomcat-maven-plugin) branch trunk updated: Cleanups remm
  • (tomcat-maven-plugin) branch trunk updated: Cleanups remm
• (tomcat-maven-plugin) branch trunk updated: POM cleanup remm
• (tomcat-maven-plugin) branch trunk updated: Adjust tests remm
• [PR] Fix BZ 70001: _jspx_dependants contains non-deterministic absolute JA… [tomcat] via GitHub
• [Bug 70001] New: _jspx_dependants contains non-deterministic absolute JAR paths for taglibs resolved from external JARs bugzilla
  • [Bug 70001] _jspx_dependants contains non-deterministic absolute JAR paths for taglibs resolved from external JARs bugzilla
• (tomcat-maven-plugin) branch trunk updated: Add more tests remm
• [PR] Bump mavenVersion from 3.8.1 to 3.9.14 [tomcat-maven-plugin] via GitHub
  • Re: [PR] Bump mavenVersion from 3.8.1 to 3.9.14 [tomcat-maven-plugin] via GitHub
• (tomcat-maven-plugin) branch dependabot/maven/mavenVersion-3.9.14 created (now b584bbe) github-bot
• (tomcat-maven-plugin) branch trunk updated: Add tests remm
• (tomcat-maven-plugin) branch trunk updated: Drop /roles command remm
• Re: [PR] fix path resolution under windows [tomcat-maven-plugin] via GitHub
  • Re: [PR] fix path resolution under windows [tomcat-maven-plugin] via GitHub
• (tomcat-maven-plugin) branch trunk updated: Fix tests remm
• (tomcat) branch 9.0.x updated: Add changelog entry guidance and agreed upon standards for new contributors (#990) csutherl
• (tomcat) branch 10.1.x updated: Add changelog entry guidance and agreed upon standards for new contributors (#990) csutherl
• (tomcat) branch 11.0.x updated: Add changelog entry guidance and agreed upon standards for new contributors (#990) csutherl
• (tomcat) branch main updated: Add changelog entry guidance and agreed upon standards for new contributors (#990) csutherl
• (tomcat-maven-plugin) branch trunk updated: Fix issues found with the integration tests remm
• (tomcat-maven-plugin) branch trunk updated: Add back concrete classes remm
• (tomcat-maven-plugin) branch trunk updated: Fix Maven group and skip signatures remm
• (tomcat-maven-plugin) branch trunk updated: Enable naming remm
• (tomcat-maven-plugin) branch trunk updated: Minor fix remm
• [PR] pom: split compound licenses [tomcat] via GitHub
  • Re: [PR] pom: split compound licenses [tomcat] via GitHub
  • Re: [PR] pom: split compound licenses [tomcat] via GitHub
  • Re: [PR] pom: split compound licenses [tomcat] via GitHub
  • Re: [PR] pom: split compound licenses [tomcat] via GitHub
  • Re: [PR] pom: split compound licenses [tomcat] via GitHub
  • Re: [PR] pom: split compound licenses [tomcat] via GitHub
  • Re: [PR] pom: split compound licenses [tomcat] via GitHub
• (tomcat-maven-plugin) branch trunk updated: Cleanup remm
• [PR] Add changelog entry guidance and agreed upon standards for new contributors [tomcat] via GitHub
  • Re: [PR] Add changelog entry guidance and agreed upon standards for new contributors [tomcat] via GitHub
  • Re: [PR] Add changelog entry guidance and agreed upon standards for new contributors [tomcat] via GitHub
• (tomcat-maven-plugin) branch trunk updated: Skip the tests here remm
• (tomcat) branch 9.0.x updated: Fix regression following fix for 69967 remm
• (tomcat) branch 10.1.x updated: Fix regression following fix for 69967 remm
• (tomcat) branch 11.0.x updated: Fix regression following fix for 69967 remm
• (tomcat) branch main updated: Fix regression following fix for 69967 remm
• (tomcat) branch 9.0.x updated: Add a unit test for CVE-2019-0232 dsoumis
• (tomcat) branch 10.1.x updated: Add a unit test for CVE-2019-0232 dsoumis
• (tomcat) branch 11.0.x updated: Add a unit test for CVE-2019-0232 dsoumis
• (tomcat) branch main updated: Add a unit test for CVE-2019-0232 dsoumis
• [PR] Add a unit test for CVE-2019-0232 [tomcat] via GitHub
  • Re: [PR] Add a unit test for CVE-2019-0232 [tomcat] via GitHub
• [PR] fix: Escape directory labels in DefaultServlet HTML listings [tomcat] via GitHub
  • Re: [PR] fix: Escape directory labels in DefaultServlet HTML listings [tomcat] via GitHub
  • Re: [PR] fix: Escape directory labels in DefaultServlet HTML listings [tomcat] via GitHub
• Java 26 Is Now Available | JDK 27 Heads-Ups David Delabassee via dev
• (tomcat-jakartaee-migration) branch main updated: Bump org.apache.ant:ant from 1.10.16 to 1.10.17 remm
• (tomcat-jakartaee-migration) branch dependabot/maven/org.apache.ant-ant-1.10.17 deleted (was 6da161d) github-bot
• (tomcat-jakartaee-migration) branch dependabot/maven/org.apache.ant-ant-1.10.17 created (now 6da161d) github-bot
• [PR] Bump org.apache.ant:ant from 1.10.16 to 1.10.17 [tomcat-jakartaee-migration] via GitHub
  • Re: [PR] Bump org.apache.ant:ant from 1.10.16 to 1.10.17 [tomcat-jakartaee-migration] via GitHub
• [PR] Improve/Refactor MBean Utilities and Add Unit Tests for Catalina MBeans [tomcat] via GitHub
• [PR] Add unit and integration tests for SSI module (catalina/ssi) [tomcat] via GitHub
• [PR] Improve test coverage for storeconfig module [tomcat] via GitHub
• (tomcat-maven-plugin) branch trunk updated: Drop some dependencies remm
• [Bug 70000] New: org.apache.catalina.connector.Response.getHeaderNames() returns duplicated "Content-Length" and "Content-Type" bugzilla
  • [Bug 70000] org.apache.catalina.connector.Response.getHeaderNames() returns duplicated "Content-Length" and "Content-Type" bugzilla
• (tomcat-maven-plugin) branch trunk updated: Replace StringUtils with equivalent code remm
• Re: [PR] MTOMCAT-290 - Fix for parallel deployment [tomcat-maven-plugin] via GitHub
  • Re: [PR] MTOMCAT-290 - Fix for parallel deployment [tomcat-maven-plugin] via GitHub
• (tomcat-maven-plugin) branch trunk updated: Work around for versioned paths remm
• (tomcat-maven-plugin) branch trunk updated: Update to lang3 remm
• (tomcat-maven-plugin) branch trunk updated: Add unimplemented but documented mojos remm
• (tomcat-maven-plugin) branch trunk updated: Fix main integration test remm
• (tomcat-maven-plugin) branch trunk updated: Fix version numbers remm
• (tomcat-maven-plugin) branch trunk updated: Check response bodies remm
• (tomcat-maven-plugin) branch trunk updated: Renames remm
• [SECURITY] CVE-2026-34500 Apache Tomcat - OCSP checks sometimes soft-fail with FFM even when soft-fail is disabled Mark Thomas
• [SECURITY] CVE-2026-34486 Apache Tomcat - Fix for CVE-2026-29146 allowed bypass of EncryptInterceptor Mark Thomas
• [SECURITY] CVE-2026-34487 Apache Tomcat - Cloud membership for clustering component exposed the Kubernetes bearer token Mark Thomas
• [SECURITY] CVE-2026-34483 Apache Tomcat - Incomplete escaping of JSON access logs Mark Thomas
• [SECURITY] CVE-2026-32990 Apache Tomcat - The fix for CVE-2025-66614 is incomplete Mark Thomas
• [SECURITY] CVE-2026-29146 Apache Tomcat - EncryptInterceptor vulnerable to padding oracle attack by default Mark Thomas
• [SECURITY] CVE-2026-29145 Apache Tomcat and Tomcat Native - OCSP checks sometimes soft-fail even when soft-fail is disabled Mark Thomas
• [SECURITY] CVE-2026-29129 Apache Tomcat - Configured TLS cipher preference order not preserved Mark Thomas
• [SECURITY] CVE-2026-25854 Apache Tomcat - Occasionally open redirect Mark Thomas
• [SECURITY] CVE-2026-24880 Apache Tomcat - Request smuggling via invalid chunk extension Mark Thomas
• svn commit: r1932933 - in tomcat/site/trunk: docs xdocs markt
• (tomcat-maven-plugin) branch trunk updated: Remove old readme remm
• (tomcat-maven-plugin) branch trunk updated: Avoid problems with missing directory remm
• (tomcat) branch 9.0.x updated: Fix wrong jakarta import.. dsoumis
• (tomcat) branch 9.0.x updated: Add a unit test for CVE-2019-0221 dsoumis
• (tomcat) branch 10.1.x updated: Add a unit test for CVE-2019-0221 dsoumis
• (tomcat) branch 11.0.x updated: Add a unit test for CVE-2019-0221 dsoumis
• (tomcat) branch main updated: Add a unit test for CVE-2019-0221 dsoumis
• (tomcat-maven-plugin) branch dependabot/maven/org.apache.logging.log4j-log4j-slf4j-impl-2.25.4 deleted (was ed12299) github-bot
• (tomcat-maven-plugin) branch trunk updated (13791f5 -> 59f7b0b) remm
  • (tomcat-maven-plugin) 01/01: Merge pull request #115 from apache/dependabot/maven/org.apache.logging.log4j-log4j-slf4j-impl-2.25.4 remm
• (tomcat-maven-plugin) branch dependabot/maven/org.codehaus.plexus-plexus-utils-4.0.3 deleted (was 7d13fea) github-bot
• (tomcat-maven-plugin) branch trunk updated (4656590 -> 13791f5) remm
  • (tomcat-maven-plugin) 01/01: Merge pull request #113 from apache/dependabot/maven/org.codehaus.plexus-plexus-utils-4.0.3 remm
• (tomcat-maven-plugin) branch trunk updated: Set parent classloader remm
• (tomcat-maven-plugin) branch trunk updated: Simplify remm
  • (tomcat-maven-plugin) branch trunk updated: Simplify remm
• (tomcat) branch 10.1.x updated: Fix typo in new method name spotted by CoPilot markt
• (tomcat) branch 9.0.x updated: Fix typo in new method name spotted by CoPilot markt
• (tomcat) branch main updated: Fix typo in new method name spotted by CoPilot markt
• (tomcat) branch 11.0.x updated: Fix typo in new method name spotted by CoPilot markt
• (tomcat-maven-plugin) branch trunk updated: Add back missing code to initialize resources remm
• [PR] Add a unit test for CVE-2019-0221 [tomcat] via GitHub
  • Re: [PR] Add a unit test for CVE-2019-0221 [tomcat] via GitHub
• (tomcat) branch 9.0.x updated: One more location where EVP_PKEY_free is required spotted by CoPilot markt
• (tomcat) branch main updated: One more location where EVP_PKEY_free is required spotted by CoPilot markt
• (tomcat) branch 10.1.x updated: One more location where EVP_PKEY_free is required spotted by CoPilot markt
• (tomcat) branch 11.0.x updated: One more location where EVP_PKEY_free is required spotted by CoPilot markt
• (tomcat) branch 9.0.x updated: Refactor as suggested by CoPilot markt
• (tomcat) branch 10.1.x updated: Refactor as suggested by CoPilot markt
• (tomcat) branch 11.0.x updated: Refactor as suggested by CoPilot markt
• (tomcat) branch main updated: Refactor as suggested by CoPilot markt
• (tomcat-maven-plugin) branch trunk updated: Add READNE.md (generated ...) remm
• (tomcat) branch 11.0.x updated: Refactoring to reduce code duplication markt
• (tomcat) branch main updated: Refactoring to reduce code duplication markt
• (tomcat) branch 9.0.x updated: Refactoring to reduce code duplication markt
• (tomcat) branch 10.1.x updated: Refactoring to reduce code duplication markt
• (tomcat) branch 9.0.x updated: More refactoring to reduce duplication markt
• (tomcat) branch 10.1.x updated: More refactoring to reduce duplication markt
• (tomcat) branch 11.0.x updated: More refactoring to reduce duplication markt
• (tomcat) branch main updated: More refactoring to reduce duplication markt
• (tomcat) branch 9.0.x updated: Remove space markt
• (tomcat) branch 9.0.x updated: Make Javadoc consistent markt
• (tomcat) branch main updated: Additional reproducibility fixes for JSP generation markt
• (tomcat) branch 11.0.x updated: Additional reproducibility fixes for JSP generation markt
• (tomcat) branch 11.0.x updated: Refactor to reduce code duplication in tests markt
• (tomcat) branch 9.0.x updated: Fix failing test and further align code markt
• (tomcat) branch 10.1.x updated: Fix failing test and further align code markt
• (tomcat) branch 11.0.x updated: Fix failing test and further align code markt
• (tomcat) branch main updated: Fix failing test and further align code markt
• (tomcat) branch main updated: Don't use Java 25 feature markt
• (tomcat) branch 9.0.x updated: Refactor to reduce code duplication in testser.java markt
• (tomcat) branch main updated: Refactor to reduce code duplication in tests markt
• (tomcat) branch 9.0.x updated: Free private keys after use markt
• (tomcat-maven-plugin) branch trunk updated: Fix dependencies remm
• (tomcat-maven-plugin) branch trunk updated: Rename remm
  • (tomcat-maven-plugin) branch trunk updated: Rename remm
• (tomcat-maven-plugin) branch trunk updated (3f6d531 -> 2db0225) remm
  • (tomcat-maven-plugin) 01/01: Merge pull request #118 from apache/dependabot/maven/org.apache.maven-maven-core-3.8.1 remm
• (tomcat-maven-plugin) branch dependabot/maven/org.apache.maven-maven-core-3.8.1 created (now 1b29a71) github-bot
• (tomcat) branch 10.1.x updated: Fix a couple more places where the key needs to be released markt
• (tomcat) branch 11.0.x updated: Fix a couple more places where the key needs to be released markt
• (tomcat) branch 10.1.x updated: Don't use Java 25 feature markt
• (tomcat) branch 11.0.x updated: Don't use Java 25 feature markt
• [PR] Bump org.apache.maven:maven-core from 2.2.1 to 3.8.1 [tomcat-maven-plugin] via GitHub
  • Re: [PR] Bump org.apache.maven:maven-core from 2.2.1 to 3.8.1 [tomcat-maven-plugin] via GitHub
• (tomcat-maven-plugin) branch trunk updated: Version updates remm
• (tomcat) branch 10.1.x updated: Additional reproducibility fixes for JSP generation markt

• Earlier messages