Summary: | Suggestion for code improvement (avoiding potential bug) | ||
---|---|---|---|
Product: | Tomcat 8 | Reporter: | Dongcai Shen <shensiulap> |
Component: | Connectors | Assignee: | Tomcat Developers Mailing List <dev> |
Status: | RESOLVED FIXED | ||
Severity: | enhancement | ||
Priority: | P2 | ||
Version: | 8.0.x-trunk | ||
Target Milestone: | ---- | ||
Hardware: | PC | ||
OS: | Linux |
Description
Dongcai Shen
2012-10-16 02:20:47 UTC
Tomcat 5.5.x is no longer supported. Looking at the mod_jk, I don't see how there could ever be a problem here but there is scope for removing the additional unnecessary calls. Moving this to Tomcat 8.0.x and marking as an enhancement. This will most likely get be applied to 8.0.x only, as part of the ongoing clean-up of the code base for the 8.0.x branch. Fixed in 8.0.x and will be included in 8.0.0 onwards. Thank Mark for your efforts. The credit of this vulnerability should be given to this bug report: https://issues.apache.org/bugzilla/show_bug.cgi?id=36883 They discovered the bug but only fixed in the httpd site and left the problem in tomcat intact. Now the problem at the tomcat part is also fixed. |