-
Bug
-
Resolution: Done
-
Trivial
-
None
-
None
https://github.com/undertow-io/undertow/blob/master/core/src/main/java/io/undertow/server/session/InMemorySessionManager.java#L235 check serverExchange != null, but at https://github.com/undertow-io/undertow/blob/master/core/src/main/java/io/undertow/server/session/InMemorySessionManager.java#L233 its being used as argument. Interface does not specify if null is allowed and in fact in impl, ie https://github.com/undertow-io/undertow/blob/master/core/src/main/java/io/undertow/server/session/SessionCookieConfig.java#L83
- is incorporated by
-
WFCORE-6057 Upgrade Undertow to 2.3.0.Final (CVE-2022-2764)
- Closed
-
WFLY-17017 Upgrade Undertow to 2.3.0.Beta1
- Closed
-
WFCORE-6056 Upgrade Undertow to 2.3.0.Beta1
- Closed
-
WFLY-17107 Upgrade Undertow legacy to 2.2.20.Final
- Closed
- mentioned on