tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From ma...@apache.org
Subject svn commit: r1557728 - /tomcat/tc6.0.x/trunk/STATUS.txt
Date Mon, 13 Jan 2014 14:30:14 GMT
Author: markt
Date: Mon Jan 13 14:30:14 2014
New Revision: 1557728

URL: http://svn.apache.org/r1557728
Log:
Proposal

Modified:
    tomcat/tc6.0.x/trunk/STATUS.txt

Modified: tomcat/tc6.0.x/trunk/STATUS.txt
URL: http://svn.apache.org/viewvc/tomcat/tc6.0.x/trunk/STATUS.txt?rev=1557728&r1=1557727&r2=1557728&view=diff
==============================================================================
--- tomcat/tc6.0.x/trunk/STATUS.txt (original)
+++ tomcat/tc6.0.x/trunk/STATUS.txt Mon Jan 13 14:30:14 2014
@@ -75,6 +75,15 @@ PATCHES PROPOSED TO BACKPORT:
       markt: patch updated
   -1:
 
+* Add an option to the Context to control the blocking of XML external entities
+  when parsing XML configuration files and enable this blocking by default when
+  a security manager is used. The block is implemented via a custom resolver to
+  enable the logging of any blocked entities.
+  Backport of https://svn.apache.org/r1549529
+  http://people.apache.org/~markt/patches/2014-01-13-xml-block-external-tc6-v1.patch
+  +1: markt
+  -1:
+
 
 PATCHES/ISSUES THAT ARE STALLED
 



---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org


Mime
View raw message