Skip to content

Update dependency io.undertow:undertow-core to v2.3.18.Final #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
monodot merged 1 commit into from
Oct 17, 2024
Merged

Update dependency io.undertow:undertow-core to v2.3.18.Final #4

monodot merged 1 commit into from
Oct 17, 2024

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Dec 14, 2022
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
io.undertow:undertow-core (source) 2.3.1.Final -> 2.3.18.Final age adoption passing confidence

Release Notes

undertow-io/undertow (io.undertow:undertow-core)

v2.3.18.Final

Compare Source

v2.3.17.Final

Compare Source

Includes CVEs: CVE-2024-7885

    Release Notes - Undertow - Version 2.3.17.Final

Bug

v2.3.16.Final

Compare Source

Release Notes - Undertow - Version 2.3.16.Final

Bug

  • [UNDERTOW-2256] - Resource predicate presentation differs depending on how it is set up
  • [UNDERTOW-2312] - multibytes language in URL request to http/https are broken in EAP access log.
  • [UNDERTOW-2381] - Invalid/benevolent hpack decoding of huffman-encoded string literal with EOS symbol
  • [UNDERTOW-2424] - Undertow produces malformed Http/1.1 responses under heavy concurrent load
  • [UNDERTOW-2425] - io.undertow.servlet.spec.ServletPrintWriter.close() high CPU when encoding characters on previously errored writer

v2.3.15.Final

Compare Source

v2.3.14.Final

Compare Source

Includes CVES: CVE-2024-6162 CVE-2024-27316 CVE-2023-5685

    Release Notes - Undertow - Version 2.3.14.Final

Sub-task

  • [UNDERTOW-2400] - ResponseWriterTestCase fails because ServletinputStream is closed before read

Bug

  • [UNDERTOW-2332] - CachingResource mishandling with TTL =0 and FS exhaustion
  • [UNDERTOW-2334] - CVE-2024-6162 url-encoded request path information can be broken on ajp-listener
  • [UNDERTOW-2378] - Adjust properly session timeout also in case when custom auth mechanisms are used
  • [UNDERTOW-2383] - Canonicalized query string in redirect location can break included links
  • [UNDERTOW-2385] - Memory leak in ThreadLocalCache
  • [UNDERTOW-2389] - DefaultByteBufferPool leaks buffers for released threads
  • [UNDERTOW-2405] - CVE-2024-27316 HTTP-2: httpd: CONTINUATION frames DoS
  • [UNDERTOW-2407] - NullPointerException on DefaultByteBufferPool.close
  • [UNDERTOW-2409] - Adjust properly session timeout also in case when GET requests with custom auth mechanisms are used

Component Upgrade

Enhancement

  • [UNDERTOW-2408] - Make fields final in DefaultByteBufferPool when appliable

v2.3.13.Final

Compare Source

v2.3.12.Final

Compare Source

v2.3.11.Final

Compare Source

v2.3.10.Final

Compare Source

v2.3.9.Final

Compare Source

v2.3.8.Final

Compare Source

v2.3.7.Final

Compare Source

v2.3.6.Final

Compare Source

v2.3.5.Final

Compare Source

v2.3.4.Final

Compare Source

v2.3.3.Final

Compare Source

v2.3.2.Final

Compare Source

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 20a84ee to 7c2e1a7 Compare January 3, 2023 15:58
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.2.Final Update dependency io.undertow:undertow-core to v2.3.3.Final Jan 3, 2023
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 7c2e1a7 to 1ae7381 Compare February 14, 2023 19:19
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.3.Final Update dependency io.undertow:undertow-core to v2.3.4.Final Feb 14, 2023
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 1ae7381 to 209b4fb Compare March 27, 2023 21:35
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.4.Final Update dependency io.undertow:undertow-core to v2.3.5.Final Mar 27, 2023
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.5.Final Update dependency io.undertow:undertow-core to v2.3.6.Final May 28, 2023
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 209b4fb to de7ebea Compare May 28, 2023 11:05
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.6.Final Update dependency io.undertow:undertow-core to v2.3.7.Final Jun 8, 2023
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from de7ebea to 3b2a6f2 Compare June 8, 2023 10:59
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.7.Final Update dependency io.undertow:undertow-core to v2.3.8.Final Aug 17, 2023
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 3b2a6f2 to 76c3ecd Compare August 17, 2023 19:52
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.8.Final Update dependency io.undertow:undertow-core to v2.3.9.Final Oct 11, 2023
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 76c3ecd to 191f62d Compare October 11, 2023 15:15
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.9.Final Update dependency io.undertow:undertow-core to v2.3.10.Final Oct 17, 2023
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 191f62d to 743715b Compare October 17, 2023 22:50
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 743715b to 6e4d96e Compare February 14, 2024 17:13
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.10.Final Update dependency io.undertow:undertow-core to v2.3.11.Final Feb 14, 2024
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.11.Final Update dependency io.undertow:undertow-core to v2.3.12.Final Feb 21, 2024
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 6e4d96e to 0a24ff9 Compare February 21, 2024 15:33
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 0a24ff9 to 847c1e3 Compare April 19, 2024 15:14
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.12.Final Update dependency io.undertow:undertow-core to v2.3.13.Final Apr 19, 2024
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 847c1e3 to 9d592ff Compare June 20, 2024 13:12
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.13.Final Update dependency io.undertow:undertow-core to v2.3.14.Final Jun 20, 2024
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 9d592ff to 10ceab1 Compare July 16, 2024 22:34
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.14.Final Update dependency io.undertow:undertow-core to v2.3.15.Final Jul 16, 2024
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 10ceab1 to 76456d5 Compare August 22, 2024 22:55
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.15.Final Update dependency io.undertow:undertow-core to v2.3.16.Final Aug 22, 2024
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from 76456d5 to e3752fa Compare September 1, 2024 22:02
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.16.Final Update dependency io.undertow:undertow-core to v2.3.17.Final Sep 1, 2024
@renovate renovate bot force-pushed the renovate/io.undertow-undertow-core-2.x branch from e3752fa to 69c1e61 Compare October 16, 2024 22:50
@renovate renovate bot changed the title Update dependency io.undertow:undertow-core to v2.3.17.Final Update dependency io.undertow:undertow-core to v2.3.18.Final Oct 16, 2024
@monodot monodot merged commit cc273d9 into main Oct 17, 2024
@renovate renovate bot deleted the renovate/io.undertow-undertow-core-2.x branch October 17, 2024 08:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@monodot