You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by ma...@apache.org on 2017/10/06 11:57:57 UTC
svn commit: r1811321 - in /tomcat/tc7.0.x/trunk:
java/org/apache/catalina/security/SecurityClassLoad.java
webapps/docs/changelog.xml
Author: markt
Date: Fri Oct 6 11:57:56 2017
New Revision: 1811321
URL: http://svn.apache.org/viewvc?rev=1811321&view=rev
Log:
Fix possible SecurityException when using the APR/native connector with a SecurityManager
Modified:
tomcat/tc7.0.x/trunk/java/org/apache/catalina/security/SecurityClassLoad.java
tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml
Modified: tomcat/tc7.0.x/trunk/java/org/apache/catalina/security/SecurityClassLoad.java
URL: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/java/org/apache/catalina/security/SecurityClassLoad.java?rev=1811321&r1=1811320&r2=1811321&view=diff
==============================================================================
--- tomcat/tc7.0.x/trunk/java/org/apache/catalina/security/SecurityClassLoad.java (original)
+++ tomcat/tc7.0.x/trunk/java/org/apache/catalina/security/SecurityClassLoad.java Fri Oct 6 11:57:56 2017
@@ -282,6 +282,8 @@ public final class SecurityClassLoad {
loader.loadClass(basePackage + "util.http.parser.HttpParser$SkipConstantResult");
loader.loadClass(basePackage + "util.http.parser.MediaType");
loader.loadClass(basePackage + "util.http.parser.MediaTypeCache");
+ // jni
+ loader.loadClass(basePackage + "jni.Status");
// net
loader.loadClass(basePackage + "util.net.Constants");
loader.loadClass(basePackage +
Modified: tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml
URL: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml?rev=1811321&r1=1811320&r2=1811321&view=diff
==============================================================================
--- tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml (original)
+++ tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml Fri Oct 6 11:57:56 2017
@@ -67,6 +67,10 @@
added in Java 9 to only disable the caching for JAR URL connections.
(markt)
</add>
+ <fix>
+ <bug>61581</bug>: Fix possible <code>SecurityException</code> when using
+ the APR/native connector with a <code>SecurityManager</code>. (markt)
+ </fix>
</changelog>
</subsection>
<subsection name="Other">
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org