93 lines
3.4 KiB
Plaintext
93 lines
3.4 KiB
Plaintext
-------------------------------------------------------------------
|
|
Tue Oct 19 07:13:12 UTC 2021 - Fridrich Strba <fstrba@suse.com>
|
|
|
|
- Make importing of package sun.misc optional since not all jdk
|
|
versions export it
|
|
|
|
-------------------------------------------------------------------
|
|
Mon Jul 19 10:13:02 UTC 2021 - Fridrich Strba <fstrba@suse.com>
|
|
|
|
- Splitting the jetty-unixsocket artifact into a separate spec file
|
|
in order to avoid extra dependencies for the jetty-minimal
|
|
package.
|
|
|
|
-------------------------------------------------------------------
|
|
Mon Jul 19 06:58:23 UTC 2021 - Fridrich Strba <fstrba@suse.com>
|
|
|
|
- Update to version 9.4.43.v20210629
|
|
* Fix: bsc#1188438, CVE-2021-34429
|
|
* Changes:
|
|
+ Improve alias checking in PathResource
|
|
+ java.nio.ReadOnlyBufferException
|
|
+ Deprecate support for UTF16 encoding in URIs
|
|
+ Update to spifly 1.3.3
|
|
+ Update to asm 9.1
|
|
|
|
-------------------------------------------------------------------
|
|
Mon Jun 28 12:45:55 UTC 2021 - Anton Shvetz <shvetz.anton@gmail.com>
|
|
|
|
- Package modules: ant, cdi, deploy, fcgi, http-spi, quickstart,
|
|
rewrite, start, unixsocket
|
|
|
|
-------------------------------------------------------------------
|
|
Wed Jun 9 14:07:47 UTC 2021 - Fridrich Strba <fstrba@suse.com>
|
|
|
|
- Update to version 9.4.42.v20210604
|
|
* Fix: bsc#1187117, CVE-2021-28169
|
|
|
|
-------------------------------------------------------------------
|
|
Fri May 14 17:01:58 UTC 2021 - Ferdinand Thiessen <rpm@fthiessen.de>
|
|
|
|
- Update to version 9.4.40.v20210413
|
|
* Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when
|
|
client send data length > 17408
|
|
* Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs
|
|
* Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory
|
|
from deployment scan
|
|
|
|
-------------------------------------------------------------------
|
|
Fri Mar 12 11:11:07 UTC 2021 - Fridrich Strba <fstrba@suse.com>
|
|
|
|
- Upgrade to upstream version 9.4.38.v20210224
|
|
* Fixes bsc#1182898, CVE-2020-27223
|
|
|
|
-------------------------------------------------------------------
|
|
Mon Dec 7 18:12:50 UTC 2020 - Fridrich Strba <fstrba@suse.com>
|
|
|
|
- Upgrade to upstream version 9.4.35.v20201120
|
|
* Fixes bsc#1179727, CVE-2020-27218
|
|
|
|
-------------------------------------------------------------------
|
|
Thu Nov 19 13:05:09 UTC 2020 - Fridrich Strba <fstrba@suse.com>
|
|
|
|
- Upgrade to upstream version 9.4.30.v20200611
|
|
|
|
-------------------------------------------------------------------
|
|
Thu Apr 2 09:25:19 UTC 2020 - Fridrich Strba <fstrba@suse.com>
|
|
|
|
- Upgrade to upstream version 9.4.27.v20200227
|
|
|
|
-------------------------------------------------------------------
|
|
Thu Nov 28 09:02:29 UTC 2019 - Fridrich Strba <fstrba@suse.com>
|
|
|
|
- Removed patch:
|
|
* jetty-annotations-asm6.patch
|
|
+ not needed when building against ASM7
|
|
|
|
-------------------------------------------------------------------
|
|
Fri Nov 8 06:52:36 UTC 2019 - Fridrich Strba <fstrba@suse.com>
|
|
|
|
- Upgrade to upstream version 2.9.22.v20191022
|
|
* new jetty-openid amd jetty-util-ajax sub-packages
|
|
- Modified patch:
|
|
* jetty-annotations-asm6.patch
|
|
+ adapt to changed context
|
|
+ build against asm6 instead of asm7 that we don't have
|
|
- Fix some rpmlint warnings and errors
|
|
|
|
-------------------------------------------------------------------
|
|
Tue Nov 5 15:39:31 UTC 2019 - Fridrich Strba <fstrba@suse.com>
|
|
|
|
- Initial packaging of a minimal version of jetty 9.4.19.v20190610
|
|
* This version is light on dependencies
|