projects / tomcat7.0 / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c6ebcd4) | patch
Return copies of the URL array rather than the original. This facilitated CVE-2010...
authormarkt <markt@13f79535-47bb-0310-9956-ffa450edef68>
Wed, 21 Jul 2010 16:09:41 +0000 (16:09 +0000)
committermarkt <markt@13f79535-47bb-0310-9956-ffa450edef68>
Wed, 21 Jul 2010 16:09:41 +0000 (16:09 +0000)
commita1e2b5d8cd39ccfd93465c9a04283bd4f6b2d10d
treed28d581fc37df83be57102607668e596820fddd5tree | snapshot
parentc6ebcd443baba29cb3050d9773ed42e1cdcc00d0commit | diff
Return copies of the URL array rather than the original. This facilitated CVE-2010-1622 although the root cause was in the Spring Framework. Returning a copy in this case seems like a good idea.

git-svn-id: https://svn.apache.org/repos/asf/tomcat/trunk@966292 13f79535-47bb-0310-9956-ffa450edef68
java/org/apache/catalina/loader/WebappClassLoader.java diff | blob | history
Unnamed repository; edit this file to name it for gitweb.