ASF Bugzilla – Attachment 20821 Details for
Bug 43079
pattern verification broken
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
Patch: fixed possible indexOutOfBounds Exception for url-patterns which are just '*'
SecurityCollection.java.patch-3 (text/plain), 892 bytes, created by
John Kew
on 2007-09-13 12:53:45 UTC
(
hide
)
Description:
Patch: fixed possible indexOutOfBounds Exception for url-patterns which are just '*'
Filename:
MIME Type:
Creator:
John Kew
Created:
2007-09-13 12:53:45 UTC
Size:
892 bytes
patch
obsolete
>--- catalina/src/share/org/apache/catalina/deploy/SecurityCollection.java (revision 5176) >+++ catalina/src/share/org/apache/catalina/deploy/SecurityCollection.java (revision 5337) >@@ -190,10 +190,11 @@ > > // Bugzilla 34805: add friendly warning. > if(pattern.endsWith("*")) { >- if (pattern.charAt(pattern.length()-1) != '/') { >+ // Bugzilla 43079: pattern verification broken >+ if (pattern.length() < 2 || pattern.charAt(pattern.length()-2) != '/') { > if (log.isDebugEnabled()) { > log.warn("Suspicious url pattern: \"" + pattern + "\"" + >- " - see http://java.sun.com/aboutJava/communityprocess/first/jsr053/servlet23_PFD.pdf" + >+ " - see http://jcp.org/aboutJava/communityprocess/final/jsr154/index.html" + > " section 11.2" ); > } > }
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 43079
:
20640
|
20820
| 20821