Artur,
On 2/23/23 15:55, Artur Tomusiak - Hannon Hill wrote:
Thanks everyone for the information and advice. Thanks to you we were able
to track this down to a specific version of Tomcat and DBCP. Simply copying
tomcat-dbcp.jar file from Tomcat 9.0.38 to Tomcat 9.0.33 and running Tomcat
9.0.33 r
HI,
Since I upgraded from 8.5.84 to 8.5.85 or later, Any REST API with below header
throws a context mismatch exception
Sample header :
--header 'Cookie:
JSESSIONID=eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJ1c2VyX3Byb2ZpbGUiOiJ7XCJfcGVybWFuZW50XCI6dHJ1ZSxcInV1aWRcIjpcIjg5MjM1MmZm’
Exception :
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 10.1.6.
Apache Tomcat 10 is an open source software implementation of the
Jakarta Servlet, Jakarta Server Pages, Jakarta Expression Language,
Jakarta WebSocket, Jakarta Authentication and Jakarta Annotations
specificatio
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 8.5.86.
Apache Tomcat 8 is an open source software implementation of the Java
Servlet, JavaServer Pages, Java Unified Expression Language, Java
WebSocket and JASPIC technologies.
Apache Tomcat 8.5.86 is a bugfix and fea
пт, 24 февр. 2023 г. в 00:42, :
>
> Hi all
>
>
>
> Can you tell me if there is a difference between Tomcat 7.0.54 with Oracle
> JRE 1.8.0_221 and OpenJDK 1.8.0_342 from a functional perspective? Can it
> be, that certain DB transactions are handled different between these two
> java versions? Yes,
Hello,
I’m currently trying to resolve an issue from our customer about a tomcat
version visible if bad characters are inserted into the URL (steps to reproduce
is to add a ‘{‘) This produces an HTTP 400 and redirects you to the default
tomcat error page with a stacktrace and version number.
To
On 24/02/2023 05:57, Manohar Mikkili wrote:
I am trying to emulate the slowloris DoS attack on Tomcat v9.0.71
Despite much deliberation, I failed to achieve this.
Since this CVE is a pretty old one(circa 2012) my guess is that the same
has been taken care of in the subsequent Tomcat releases. I
On 23/02/2023 21:41, a.grub...@bluewin.ch wrote:
Hi all
Can you tell me if there is a difference between Tomcat 7.0.54 with Oracle
JRE 1.8.0_221 and OpenJDK 1.8.0_342 from a functional perspective?
Tomcat should behave exactly the same way with either of those JVMs.
However, the Tomcat projec
On 23/02/2023 20:55, Artur Tomusiak - Hannon Hill wrote:
A few follow up questions:
- Which of the two workarounds would be more recommended? Would there be
any problems with mismatching tomcat-dbcp.jar version or with using the
useLocalSessionState parameter?
It depends.
Given t
