Author: markt
Date: Sun Jun 14 21:19:54 2009
New Revision: 784616
URL: http://svn.apache.org/viewvc?rev=784616&view=rev
Log:
Add the fixes we got 'for free' as a result of sharing connector code with TC5.
Modified:
tomcat/container/branches/tc4.1.x/RELEASE-NOTES-4.1.txt
Modified: tomcat/container/branches/tc4.1.x/RELEASE-NOTES-4.1.txt
URL:
http://svn.apache.org/viewvc/tomcat/container/branches/tc4.1.x/RELEASE-NOTES-4.1.txt?rev=784616&r1=784615&r2=784616&view=diff
==============================================================================
--- tomcat/container/branches/tc4.1.x/RELEASE-NOTES-4.1.txt (original)
+++ tomcat/container/branches/tc4.1.x/RELEASE-NOTES-4.1.txt Sun Jun 14 21:19:54
2009
@@ -2051,6 +2051,27 @@
[4.1.39] CoyoteConnector
Fix a regression caused by the fix for #44494.
+[4.1.40] #41263
+ Fix ServletRequest.getRemotePort() when using mod_jk
+
+[4.1.40] #45026
+ Don't map custom HTTP error codes to 500 when using mod_jk
+
+[4.1.40] #45528
+ Fix infinite loop on startup when using an invalid ciphers setting
+
+[4.1.40] #46552
+ Return a 400 rather than a 200 if headers are too large
+
+[4.1.40] #46984
+ Reject requests with invalid HTTP methods with a 400 rather than a 501
+
+[4.1.40] DateTool
+ Make thread safe
+
+[4.1.40] Cookies
+ Port the cookie parsing changes from Tomcat 6
+
[4.1.40] CoyoteConnector
Fix a potential DOS vulnerability with the Java AJP connector
This is CVE-2009-0033
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
