You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by bu...@apache.org on 2016/11/28 09:08:07 UTC
[Bug 60425] New: problem if pipe (|) exist in url requaet
https://bz.apache.org/bugzilla/show_bug.cgi?id=60425
Bug ID: 60425
Summary: problem if pipe (|) exist in url requaet
Product: Tomcat 8
Version: 8.5.8
Hardware: PC
OS: Windows NT
Status: NEW
Severity: normal
Priority: P2
Component: Catalina
Assignee: dev@tomcat.apache.org
Reporter: predrag.kusljevic@gmail.com
Target Milestone: ----
If pipe exist in url rqauest Tomcat do not handle reqaest and request do not
exist in access log file. Older Tomcat version handle corectly equal url.
Best regards,
Predrag
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org
[Bug 60425] problem if pipe (|) exist in url requaet
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=60425
Mark Thomas <ma...@apache.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Resolution|--- |INVALID
Status|NEW |RESOLVED
--- Comment #1 from Mark Thomas <ma...@apache.org> ---
Unencoded '|' characters are not permitted in URLs. Any client that produces
them is broken and needs to be fixed.
Tomcat tightened up validation of request targets in response to CVE-2016-6816
so the chances of this change being reverted are extremely low.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org