f6bf951acbd99b20945223ec82bf284a590c7f86 | Vulnerability History Project

The Vulnerability History Project

Enable host name verification for secure WebSocket client connections by default.

      git-svn-id: https://svn.apache.org/repos/asf/tomcat/tc8.5.x/trunk@1833758 13f79535-47bb-0310-9956-ffa450edef68

by Pauline the Wren 2018-06-18 19:43:50 UTC

commit f6bf951acbd99b20945223ec82bf284a590c7f86

Tomcat Fix CVE-2018-8034

java/org/apache/tomcat/websocket/WsWebSocketContainer.java

+3 -12

webapps/docs/changelog.xml

-4

webapps/docs/web-socket-howto.xml

+4 -15

expand_less