[jboss-cvs] JBossAS SVN: r89708 - projects/docs/enterprise/4.2.7/readme/en-US.

jboss-cvs-commits at lists.jboss.org jboss-cvs-commits at lists.jboss.org
Tue Jun 2 21:52:14 EDT 2009 

Author: irooskov at redhat.com
Date: 2009-06-02 21:52:14 -0400 (Tue, 02 Jun 2009)
New Revision: 89708

Modified:
   projects/docs/enterprise/4.2.7/readme/en-US/Release_Notes_CP07.xml
Log:
updated release notes with new JIRA


Modified: projects/docs/enterprise/4.2.7/readme/en-US/Release_Notes_CP07.xml
===================================================================
--- projects/docs/enterprise/4.2.7/readme/en-US/Release_Notes_CP07.xml	2009-06-03 01:14:13 UTC (rev 89707)
+++ projects/docs/enterprise/4.2.7/readme/en-US/Release_Notes_CP07.xml	2009-06-03 01:52:14 UTC (rev 89708)
@@ -500,9 +500,31 @@
 				<itemizedlist>
 					<listitem>
 						<para>
-							<ulink url="http://jira.jboss.com/jira/browse/JBPAPP-1873">JBPAPP-1873</ulink>: When the <parameter>LIMIT_BUFFER</parameter> parameter was set to <code>true</code> an <exceptionname>ArrayIndexOutOfBoundsException</exceptionname> would occur. The <filename>BodyContentImpl.java</filename> file has been updated to correct this bug by removing the <varname>bufferSizeSave</varname> variable and removing the case where the <varname>writer</varname> variable isn't null. To replace these a case has been written to execute the <methodname>clearBody</methodname> method when the <varname>writer</varname> variable is equal to null. By implementing these changes the <classname>JspWriter</classname> buffer size and remaning bytes are calculated correctly, removing the <exceptionname>ArrayIndexOutOfBoundsException</exceptionname>.
+							<ulink url="http://jira.jboss.com/jira/browse/JBPAPP-1874">JBPAPP-1874</ulink>: The JBoss Web component of the Enterprise Application Platform has been upgraded to version 2.0.0.CP10. A list of the included fixes is as follows:
 						</para>
-					</listitem> 
+						<itemizedlist>
+							<listitem>
+								<para>
+									<ulink url="http://jira.jboss.com/jira/browse/JBPAPP-1992">JBPAPP-1992</ulink>: Apache Tomcat 5 and 6 did not properly handle double quote (<emphasis>"</emphasis>) characters and the encoded backslash (%5C) sequences in cookie values. These bugs may have allowed for sensitive information such as session IDs to be leaked to remote attackers and permit session hijack attacks. This has been rectified by the modification of <filename>ApplicationContext.java</filename> to generate a <exceptionname>MalformedURLException</exceptionname> if a path starts with an encoded backslash and the modification of <filename>ServerCookie.java</filename> to escape double quote characters. (CVE-2007-5333)
+								</para>
+							</listitem>
+							<listitem>
+								<para>
+									<ulink url="http://jira.jboss.com/jira/browse/JBPAPP-1950">JBPAPP-1950</ulink>: After the <methodname>HttpServletResponse.reset</methodname> method was executed, any subsequent calls to <methodname>response.setContentType</methodname> or <methodname>response.setCharacterEncoding</methodname> had no effect on the content type. This latest release incorporates a fix that allows the  <methodname>response.setContentType</methodname> and <methodname>response.setCharacterEncoding</methodname> methods to function correctly after a <methodname>HttpServletResponse.reset</methodname> call and modify the content type. To achieve this outcome the following method executions have been added to the <methodname>reset()</methodname> method of the <classname>Response</classname> class:
+								</para>
+<programlisting>
+usingOutputStream = false;
+usingWriter = false;
+isCharacterEncodingSet = false;
+</programlisting>
+							</listitem>
+							<listitem>
+								<para>
+									<ulink url="http://jira.jboss.com/jira/browse/JBPAPP-1873">JBPAPP-1873</ulink>: When the <parameter>LIMIT_BUFFER</parameter> parameter was set to <code>true</code> an <exceptionname>ArrayIndexOutOfBoundsException</exceptionname> would occur. The <filename>BodyContentImpl.java</filename> file has been updated to correct this bug by removing the <varname>bufferSizeSave</varname> variable and removing the case where the <varname>writer</varname> variable isn't null. To replace these a case has been written to execute the <methodname>clearBody</methodname> method when the <varname>writer</varname> variable is equal to null. By implementing these changes the <classname>JspWriter</classname> buffer size and remaning bytes are calculated correctly, removing the <exceptionname>ArrayIndexOutOfBoundsException</exceptionname>.
+								</para>
+							</listitem>
+						</itemizedlist>
+					</listitem>
 				</itemizedlist> 
 			</para>
 		</formalpara>

More information about the jboss-cvs-commits mailing list