Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
Name: apache2-mod_jk | Distribution: SUSE Linux Enterprise 15 |
Version: 1.2.49 | Vendor: SUSE LLC <https://www.suse.com/> |
Release: 150100.6.9.1 | Build date: Tue Jan 2 07:19:03 2024 |
Group: Productivity/Networking/Web/Frontends | Build host: h01-ch4b |
Size: 439086 | Source RPM: apache2-mod_jk-1.2.49-150100.6.9.1.src.rpm |
Packager: https://www.suse.com/ | |
Url: https://tomcat.apache.org/connectors-doc/ | |
Summary: Connectors between Apache and Tomcat Servlet Container |
This package provides modules for Apache to invisibly integrate Tomcat capabilities into an existing Apache installation. To load the module into Apache, run the command "a2enmod jk" as root.
Apache-2.0
* Thu Dec 21 2023 david.anes@suse.com - Add apache2-fix-symbol-export-typo.patch to fix a typo to restrict the symbols to export by the module. Fixes bsc#1206261 * Tue Oct 17 2023 david.anes@suse.com - Update to version 1.2.49: Apache * Retrieve default request id from mod_unique_id. It can also be taken from an arbitrary environment variable by configuring "JkRequestIdIndicator". * Don't delegate the generatation of the response body to httpd when the status code represents an error if the request used the HEAD method. * Only export the main module symbol. Visibility of module internal symbols led to crashes when conflicting with library symbols. Based on a patch provided by Josef Čejka. (wrong fix was applied for bsc#1206261) * Remove support for implicit mapping of requests to workers. All mappings must now be explicit. IIS * Set default request id as a GUID. It can also be taken from an arbitrary request header by configuring "request_id_header". * Fix non-empty check for the Translate header. Common * Fix compiler warning when initializing and copying fixed length strings. * Add a request id to mod_jk log lines. * Enable configure to find the correct sizes for pid_t and pthread_t when building on MacOS. * Fix Clang 15/16 compatability. Pull request #6 provided by Sam James. * Improve XSS hardening in status worker. * Add additional bounds and error checking when reading AJP messages. Docs * Remove support for the Netscape / Sun ONE / Oracle iPlanet Web Server as the product has been retired. * Remove links to the old JK2 documentation. The JK2 documentation is still available, it is just no longer linked from the current JK documentation. * Restructure subsections in changelog starting with version 1.2.45. * Mon May 18 2020 pmonrealgonzalez@suse.com - Update jk.conf: [bsc#1167896] * Specify the location of JkShmFile. * Update tomcat-webapps paths. * Mon May 11 2020 pmonrealgonzalez@suse.com - Fix Aliases to be compatible with the tomcat example URLs [bsc#1167896] * Mon May 11 2020 pmonrealgonzalez@suse.com - Changes for 1.2.47 and 1.2.48 updates: * Add: Apache: Extend trace level logging of method entry/exit to aid debugging of request mapping issues. * Fix: Apache: Fix a bug in the normalization checks that prevented file based requests, such as SSI file includes, from being processed. * Fix: Apache: When using JkAutoAlias, ensure that files that include spaces in their name are accessible. * Update: Common: Update the documentation to reflect that the source code for the Apache Tomcat Connectors has moved from Subversion to Git. * Fix: Common: When using set_session_cookie, ensure that an updated session cookie is issued if the load-balancer has to failover to a different worker. * Update: Common: Update config.guess and config.sub from https://git.savannah.gnu.org/git/config.git. * Update: Common: Update release script for migration to git. * Sun Feb 09 2020 pgajdos@suse.com - remove useless %check section * Mon Nov 05 2018 pmonrealgonzalez@suse.com - Update to version 1.2.46 Fixes: * Apache: Fix regression in 1.2.44 which resulted in socket_connect_timeout to be interpreted in units of seconds instead of milliseconds on platforms that provide poll(). (rjung) * Security: CVE-2018-11759 Connector path traversal [bsc#1114612] - Update to version 1.2.45 Fixes: * Correct regression in 1.2.44 that broke request handling for OPTIONS * requests. (rjung) * Improve path parameter parsing so that the session ID specified by the session_path worker property for load-balanced workers can be extracted from a path parameter in any segment of the URI, rather than only from the final segment. (markt) * Apache: Improve path parameter handling so that JkStripSession can remove session IDs that are specified on path parameters in any segment of the URI rather than only the final segment. (markt) * IIS: Improve path parameter handling so that strip_session can remove session IDs that are specified on path parameters in any segment of the URI rather than only the final segment. (markt) Updates: * Apache: Update the documentation to note additional limitations of the JkAutoAlias directive. (markt) Code: * Common: Optimize path parameter handling. (rjung) - Cleaned with spec-cleaner * Wed Sep 19 2018 pmonrealgonzalez@suse.com - Update to version 1.2.44 Updates: * Remove the Novell Netware make files and Netware specific source code since there has not been a supported version of Netware available for over five years. (markt) * Apache: Update the documentation to use httpd 2.4.x style access control directives. (markt) * Update PCRE bundled with the ISAPI redirector to 8.42. (rjung) * Update config.guess and config.sub from https://git.savannah.gnu.org/git/config.git. (rjung) Fixes: * Common: Use Local, rather than Global, mutexs on Windows to better support multi-user environments. (markt) * Apache: Use poll rather than select to avoid the limitations of select triggering an httpd crash. Patch provided by Koen Wilde. (markt) * ISAPI: Remove the check that rejects requests that contain path segments that match WEB-INF or META-INF as it duplicates a check that Tomcat performs and, because ISAPI does not have visibility of the current context path, it is impossible to implement this check without valid requests being rejected. (markt) * Refactor normalisation of request URIs to a common location and align the normalisation implementation for mod_jk with that implemented by Tomcat. (markt) Add: * Clarify the behvaiour of lb workers when all ajp13 workers fail with particular reference to the role of the retries attribute. (markt) * Add the new load-balancer worker property lb_retries to improve the control over the number of retries. Based on a patch provided by Frederik Nosi. (markt) * Add a note to the documentation that the CollapseSlashes options are now effectively hard-coded to CollpaseSlashesAll due to the changes made to align normalization with that implemented in Tomcat. (markt) * Thu Mar 15 2018 pmonrealgonzalez@suse.com - Update to version 1.2.43 [bsc#1085220, CVE-2018-1323] * LB: Propagate load factor changes applied by the status worker to a load balancer sub worker correctly to all processes. * ISAPI: Align the make files for 32-bit and 64-bit builds. * Update config.guess and config.sub * Update PCRE bundled with the ISAPI redirector to 8.41. * Update the ISAPI redirector installation documentation to reflect the currently supported versions of Windows. * Align the normalization performed by the ISAPI redirector with that implemented by Tomcat. * Tue Feb 13 2018 tchvatal@suse.com - Disable tests for now as the default profile is not working properly to load up and upstream should update the sample * Thu Feb 01 2018 tchvatal@suse.com - Version update to 1.2.42: * Many small fixes * Optimalization for new gccs * Minor code cleanups * Sat May 20 2017 tchvatal@suse.com - Just depend on java-devel * Wed Jan 20 2016 tchvatal@suse.com - Version update to 1.2.41: * remove merged patch apache2-mod_jk-CVE-2014-8111.patch * many small bugfixes all around: + http://tomcat.apache.org/connectors-doc/miscellaneous/changelog.html * Wed Sep 09 2015 pgajdos@suse.com - test package with %apache_test_module_load * Thu Jul 16 2015 pgajdos@suse.com - Requries: %{apache_suse_maintenance_mmn} This will pull this module to the update (in released distribution) when apache maintainer thinks it is good (due api/abi changes). * Thu Jun 04 2015 tchvatal@suse.com - Apply patch to fix bnc#927845 CVE-2014-8111 VUL-1: apache2-mod_jk: Tomcat mod_jk information leak due to incorrect JkMount/JkUnmount directives processing: * apache2-mod_jk-CVE-2014-8111.patch * Thu Jun 04 2015 pgajdos@suse.com - access configuration conditional in jk.conf example * Wed Mar 18 2015 tchvatal@suse.com - Drop the asc again to make dimstar happy * Fri Mar 13 2015 tchvatal@suse.com - Add asc signature file. - Fix URL for homepage * Mon Nov 24 2014 pgajdos@suse.com - fix tomcat paths in jk.conf [bnc#742618] * Mon Nov 03 2014 pgajdos@suse.com - use apache rpm macros
/usr/lib64/apache2/mod_jk.so /usr/share/doc/packages/apache2-mod_jk /usr/share/doc/packages/apache2-mod_jk/README.SUSE /usr/share/doc/packages/apache2-mod_jk/jk.conf /usr/share/doc/packages/apache2-mod_jk/workers.properties /usr/share/licenses/apache2-mod_jk /usr/share/licenses/apache2-mod_jk/LICENSE
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Jul 9 20:06:21 2024