/[Apache-SVN]
ViewVC logotype

Revision 1417891


Jump to revision: Previous Next
Author: kkolinko
Date: Thu Dec 6 13:58:59 2012 UTC (12 years, 4 months ago)
Changed paths: 3
Log Message:
This is the fix for CVE-2013-2067
In FormAuthenticator: If it is configured to change Session IDs,
do the change before displaying the login form.

Changed paths

Path Details
Directorytomcat/tc6.0.x/trunk/STATUS.txt modified , text changed
Directorytomcat/tc6.0.x/trunk/java/org/apache/catalina/authenticator/FormAuthenticator.java modified , text changed
Directorytomcat/tc6.0.x/trunk/webapps/docs/changelog.xml modified , text changed

infrastructure at apache.org
ViewVC Help
Powered by ViewVC 1.1.26