angler-fishThe Vulnerability History Project

Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=62343

      Make CORS filter defaults more secure.
This is the fix for CVE-2018-8014.

git-svn-id: https://svn.apache.org/repos/asf/tomcat/tc7.0.x/trunk@1831730 13f79535-47bb-0310-9956-ffa450edef68
by Pauline the Wren 2018-05-16 14:56:34 UTC
commit 5877390a9605f56d9bd6859a54ccbfb16374a78b
Tomcat Fix CVE-2018-8014
java/org/apache/catalina/filters/CorsFilter.java
+9 -10
java/org/apache/catalina/filters/LocalStrings.properties
-2
test/org/apache/catalina/filters/TestCorsFilter.java
+47 -15
test/org/apache/catalina/filters/TesterFilterConfigs.java
+5 -6
webapps/docs/changelog.xml
-4
expand_less