Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

jetty-io-9.4.48-150200.3.16.3 RPM for noarch

From OpenSuSE Leap 15.5 for noarch

Name: jetty-io Distribution: SUSE Linux Enterprise 15
Version: 9.4.48 Vendor: SUSE LLC <https://www.suse.com/>
Release: 150200.3.16.3 Build date: Sat Feb 25 14:41:03 2023
Group: Productivity/Networking/Web/Servers Build host: sheep65
Size: 177538 Source RPM: jetty-minimal-9.4.48-150200.3.16.3.src.rpm
Packager: https://www.suse.com/
Url: https://www.eclipse.org/jetty/
Summary: The io module for Jetty
Jetty is a 100% Java HTTP Server and Servlet Container. This means that you
do not need to configure and run a separate web server (like Apache) in order
to use Java, servlets and JSPs to generate dynamic content. Jetty is a fully
featured web server for static and dynamic content. Unlike separate
server/container solutions, this means that your web server and web
application run in the same process, without interconnection overheads
and complications. Furthermore, as a pure java component, Jetty can be simply
included in your application for demonstration, distribution or deployment.
Jetty is available on all Java supported platforms.

This package contains The io module for Jetty.

Provides

Requires

License

Apache-2.0 OR EPL-1.0

Changelog

* Fri Jul 08 2022 fstrba@suse.com
  - Upgrade to version 9.4.48.v20220622
    * Fixes
      + #8184 - All suffix globs except first fail to match if path
      has "." character in prefix section
      + #8145 - RegexPathSpec backport of optional group name/info
      lookup if regex fails
      + #8088 - Add option to configure exitVm on ShutdownMonitor from
      System properties
      + #8067 - Wall time usage in DoSFilter RateTracker results in
      false positive alert
      + #8014 - Review HttpRequest URI construction (Resolves
      CVE-2022-2047, bsc#1201317)
      + #7976 - Add TRANSFER_ENCODING violation for MultiPart RFC7578
      parser
      + #7947 - Improved PathSpec handling for servletName & pathInfo
      + #7935 - Review HTTP/2 error handling (Resolves CVE-2022-2048,
      bsc#1201316)
      + #7918 - PathMappings.asPathSpec does not allow root
      ServletPathSpec
      + #7863 - Default servlet drops first accept-encoding header if
      there is more than one.
      + #7858 - GZipHandler does not play nice with other handlers in
      HandlerCollection
      + #7837 - Fix StatisticsHandler in the case a Handler throws
      exception
      + #7809 - Jetty 9.4.x 7801 duplicate set session cookies
      + #7748 - Allow overriding of url-pattern mapping in
      ServletContextHandler to allow for regex or uri-template
      matching
* Tue Mar 29 2022 fstrba@suse.com
  - Upgrade to version 9.4.46.v20220328
    * Changes
      + Option --write-module-graph produces wrong .dot file
      + ArrayTrie getBest fails to match the empty string entry in
      certain cases
      + Interrupt flag is not always cleared in between requests
      + Gzip compression not working for multipart/form-data when
      added to the allowed list using addIncludedMimeTypes.
      + Miconfigured headerCacheSize in can result in
      IllegalArgumentException
      + HttpServletResponse.encodeURL not working for URLs starting
      with ../
* Tue Mar 22 2022 fstrba@suse.com
  - Build with java source and target levels 8
  - Fix javadoc generation on JDK >= 13
* Tue Oct 19 2021 fstrba@suse.com
  - Make importing of package sun.misc optional since not all jdk
    versions export it
* Mon Jul 19 2021 fstrba@suse.com
  - Splitting the jetty-unixsocket artifact into a separate spec file
    in order to avoid extra dependencies for the jetty-minimal
    package.
* Mon Jul 19 2021 fstrba@suse.com
  - Update to version 9.4.43.v20210629
    * Fix: bsc#1188438, CVE-2021-34429
    * Changes:
      + Improve alias checking in PathResource
      + java.nio.ReadOnlyBufferException
      + Deprecate support for UTF16 encoding in URIs
      + Update to spifly 1.3.3
      + Update to asm 9.1
* Mon Jun 28 2021 shvetz.anton@gmail.com
  - Package modules: ant, cdi, deploy, fcgi, http-spi, quickstart,
    rewrite, start, unixsocket
* Wed Jun 09 2021 fstrba@suse.com
  - Update to version 9.4.42.v20210604
    * Fix: bsc#1187117, CVE-2021-28169
* Fri May 14 2021 rpm@fthiessen.de
  - Update to version 9.4.40.v20210413
    * Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when
      client send data length > 17408
    * Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs
    * Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory
      from deployment scan
* Fri Mar 12 2021 fstrba@suse.com
  - Upgrade to upstream version 9.4.38.v20210224
    * Fixes bsc#1182898, CVE-2020-27223
* Mon Dec 07 2020 fstrba@suse.com
  - Upgrade to upstream version 9.4.35.v20201120
    * Fixes bsc#1179727, CVE-2020-27218
* Thu Nov 19 2020 fstrba@suse.com
  - Upgrade to upstream version 9.4.30.v20200611
* Thu Apr 02 2020 fstrba@suse.com
  - Upgrade to upstream version 9.4.27.v20200227
* Thu Nov 28 2019 fstrba@suse.com
  - Removed patch:
    * jetty-annotations-asm6.patch
      + not needed when building against ASM7
* Fri Nov 08 2019 fstrba@suse.com
  - Upgrade to upstream version 2.9.22.v20191022
    * new jetty-openid amd jetty-util-ajax sub-packages
  - Modified patch:
    * jetty-annotations-asm6.patch
      + adapt to changed context
    + build against asm6 instead of asm7 that we don't have
  - Fix some rpmlint warnings and errors
* Tue Nov 05 2019 fstrba@suse.com
  - Initial packaging of a minimal version of jetty 9.4.19.v20190610
    * This version is light on dependencies

Files

/usr/share/java/jetty
/usr/share/java/jetty/jetty-io.jar
/usr/share/maven-metadata/jetty-minimal-jetty-io.xml
/usr/share/maven-poms/jetty
/usr/share/maven-poms/jetty/jetty-io.pom


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Jul 9 18:05:00 2024