Author: kkolinko
Date: Fri Feb 13 00:22:08 2015
New Revision: 1659444
URL: http://svn.apache.org/r1659444
Log:
Add CVE-2014-0227 to changelog
Modified:
tomcat/tc8.0.x/trunk/webapps/docs/changelog.xml
Modified: tomcat/tc8.0.x/trunk/webapps/docs/changelog.xml
URL:
http://svn.apache.org/viewvc/tomcat/tc8.0.x/trunk/webapps/docs/changelog.xml?rev=1659444&r1=1659443&r2=1659444&view=diff
==============================================================================
--- tomcat/tc8.0.x/trunk/webapps/docs/changelog.xml (original)
+++ tomcat/tc8.0.x/trunk/webapps/docs/changelog.xml Fri Feb 13 00:22:08 2015
@@ -1922,6 +1922,12 @@
connectors. (kkolinko)
</fix>
<fix>
+ Fix CVE-2014-0227:
+ Various improvements to ChunkedInputFilter including clean-up, i18n for
+ error messages and adding an error flag to allow subsequent attempts at
+ reading after an error to fail fast. (markt)
+ </fix>
+ <fix>
If request contains an unrecognized Expect header, respond with error
417 (Expectation Failed), according to RFC2616 chapter 14.20. (markt)
</fix>
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
