| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: jetty-http-spi | Distribution: SUSE Linux Enterprise 15 |
| Version: 9.4.48 | Vendor: SUSE LLC <https://www.suse.com/> |
| Release: 150200.3.16.3 | Build date: Sat Feb 25 14:41:03 2023 |
| Group: Productivity/Networking/Web/Servers | Build host: sheep65 |
| Size: 27480 | Source RPM: jetty-minimal-9.4.48-150200.3.16.3.src.rpm |
| Packager: https://www.suse.com/ | |
| Url: https://www.eclipse.org/jetty/ | |
| Summary: The http-spi module for Jetty | |
Jetty is a 100% Java HTTP Server and Servlet Container. This means that you do not need to configure and run a separate web server (like Apache) in order to use Java, servlets and JSPs to generate dynamic content. Jetty is a fully featured web server for static and dynamic content. Unlike separate server/container solutions, this means that your web server and web application run in the same process, without interconnection overheads and complications. Furthermore, as a pure java component, Jetty can be simply included in your application for demonstration, distribution or deployment. Jetty is available on all Java supported platforms. This package contains The http-spi module for Jetty.
Apache-2.0 OR EPL-1.0
* Fri Jul 08 2022 fstrba@suse.com
- Upgrade to version 9.4.48.v20220622
* Fixes
+ #8184 - All suffix globs except first fail to match if path
has "." character in prefix section
+ #8145 - RegexPathSpec backport of optional group name/info
lookup if regex fails
+ #8088 - Add option to configure exitVm on ShutdownMonitor from
System properties
+ #8067 - Wall time usage in DoSFilter RateTracker results in
false positive alert
+ #8014 - Review HttpRequest URI construction (Resolves
CVE-2022-2047, bsc#1201317)
+ #7976 - Add TRANSFER_ENCODING violation for MultiPart RFC7578
parser
+ #7947 - Improved PathSpec handling for servletName & pathInfo
+ #7935 - Review HTTP/2 error handling (Resolves CVE-2022-2048,
bsc#1201316)
+ #7918 - PathMappings.asPathSpec does not allow root
ServletPathSpec
+ #7863 - Default servlet drops first accept-encoding header if
there is more than one.
+ #7858 - GZipHandler does not play nice with other handlers in
HandlerCollection
+ #7837 - Fix StatisticsHandler in the case a Handler throws
exception
+ #7809 - Jetty 9.4.x 7801 duplicate set session cookies
+ #7748 - Allow overriding of url-pattern mapping in
ServletContextHandler to allow for regex or uri-template
matching
* Tue Mar 29 2022 fstrba@suse.com
- Upgrade to version 9.4.46.v20220328
* Changes
+ Option --write-module-graph produces wrong .dot file
+ ArrayTrie getBest fails to match the empty string entry in
certain cases
+ Interrupt flag is not always cleared in between requests
+ Gzip compression not working for multipart/form-data when
added to the allowed list using addIncludedMimeTypes.
+ Miconfigured headerCacheSize in can result in
IllegalArgumentException
+ HttpServletResponse.encodeURL not working for URLs starting
with ../
* Tue Mar 22 2022 fstrba@suse.com
- Build with java source and target levels 8
- Fix javadoc generation on JDK >= 13
* Tue Oct 19 2021 fstrba@suse.com
- Make importing of package sun.misc optional since not all jdk
versions export it
* Mon Jul 19 2021 fstrba@suse.com
- Splitting the jetty-unixsocket artifact into a separate spec file
in order to avoid extra dependencies for the jetty-minimal
package.
* Mon Jul 19 2021 fstrba@suse.com
- Update to version 9.4.43.v20210629
* Fix: bsc#1188438, CVE-2021-34429
* Changes:
+ Improve alias checking in PathResource
+ java.nio.ReadOnlyBufferException
+ Deprecate support for UTF16 encoding in URIs
+ Update to spifly 1.3.3
+ Update to asm 9.1
* Mon Jun 28 2021 shvetz.anton@gmail.com
- Package modules: ant, cdi, deploy, fcgi, http-spi, quickstart,
rewrite, start, unixsocket
* Wed Jun 09 2021 fstrba@suse.com
- Update to version 9.4.42.v20210604
* Fix: bsc#1187117, CVE-2021-28169
* Fri May 14 2021 rpm@fthiessen.de
- Update to version 9.4.40.v20210413
* Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when
client send data length > 17408
* Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs
* Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory
from deployment scan
* Fri Mar 12 2021 fstrba@suse.com
- Upgrade to upstream version 9.4.38.v20210224
* Fixes bsc#1182898, CVE-2020-27223
* Mon Dec 07 2020 fstrba@suse.com
- Upgrade to upstream version 9.4.35.v20201120
* Fixes bsc#1179727, CVE-2020-27218
* Thu Nov 19 2020 fstrba@suse.com
- Upgrade to upstream version 9.4.30.v20200611
* Thu Apr 02 2020 fstrba@suse.com
- Upgrade to upstream version 9.4.27.v20200227
* Thu Nov 28 2019 fstrba@suse.com
- Removed patch:
* jetty-annotations-asm6.patch
+ not needed when building against ASM7
* Fri Nov 08 2019 fstrba@suse.com
- Upgrade to upstream version 2.9.22.v20191022
* new jetty-openid amd jetty-util-ajax sub-packages
- Modified patch:
* jetty-annotations-asm6.patch
+ adapt to changed context
+ build against asm6 instead of asm7 that we don't have
- Fix some rpmlint warnings and errors
* Tue Nov 05 2019 fstrba@suse.com
- Initial packaging of a minimal version of jetty 9.4.19.v20190610
* This version is light on dependencies
/usr/share/java/jetty /usr/share/java/jetty/jetty-http-spi.jar /usr/share/maven-metadata/jetty-minimal-jetty-http-spi.xml /usr/share/maven-poms/jetty /usr/share/maven-poms/jetty/jetty-http-spi.pom
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Apr 9 19:57:54 2024