This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/master by this push:
new 4dab3f2 Fix typos
4dab3f2 is described below
commit 4dab3f2c0f006cb508eaae5624b7bb8ab96a9a00
Author: Mark Thomas <ma...@apache.org>
AuthorDate: Wed Dec 18 16:26:33 2019 +0000
Fix typos
---
webapps/docs/changelog.xml | 5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff --git a/webapps/docs/changelog.xml b/webapps/docs/changelog.xml
index 14774e6..55781a4 100644
--- a/webapps/docs/changelog.xml
+++ b/webapps/docs/changelog.xml
@@ -178,7 +178,7 @@
<fix>
Refactor FORM authentication to reduce duplicate code and to ensure
that
the authenticated Principal is not cached in the session when caching
is
- disabled. (markt)
+ disabled. This is the fix for CVE-2019-17563. (markt/kkolinko)
</fix>
</changelog>
</subsection>
@@ -309,7 +309,8 @@
<subsection name="Catalina">
<changelog>
<fix>
- Refactor JMX remote RMI registry creation. (remm)
+ Refactor JMX remote RMI registry creation. This is the fix for
+ CVE-2019-12418. (remm)
</fix>
<add>
Improvement to CsrfPreventionFilter: expose the latest available nonce
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
