Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 2.3.19.SP1, 2.2.39.Final, 2.3.21.Final, 2.3.20.SP1, 2.2.38.SP1, 2.2.40.Final, 2.4.0.Beta1, EE 2.0.0.Beta1, 1.4.18.SP17, 2.0.41.SP8, EE 1.0.0.Alpha1
Affects Version/s: None
Component/s: None
Labels:
None

Git Pull Request:
https://gitlab.cee.redhat.com/undertow-io/undertow/-/merge_requests/86, https://gitlab.cee.redhat.com/undertow-io/undertow/-/merge_requests/87, https://github.com/undertow-io/undertow/pull/1856, https://github.com/undertow-io/undertow/pull/1860, https://github.com/undertow-io/undertow/pull/1882, https://github.com/undertow-io/undertow/pull/1894, https://github.com/undertow-io/undertow-ee/pull/52, https://github.com/undertow-io/undertow-ee/pull/53

IMPORTANT: This is behavior change, this needs to be highlighted in release notes!!!

causes

JBEAP-31823 [GSS](8.1.z) UNDERTOW-2677 - MultipartParserDefinition overrides max entity size already set and configured from other sources

JBEAP-31824 [GSS](8.0.z) UNDERTOW-2677 - MultipartParserDefinition overrides max entity size already set and configured from other sources

UNDERTOW-2677 MultipartParserDefinition overrides max entity size already set and configured from other sources

is blocked by

UNDERTOW-2573 MultiParseParserDefinition can overwrite entity size in exchange request

UNDERTOW-2597 MultiPartParserDefinition must check for entity size larger than zero

is incorporated by

WFCORE-7462 CVE-2024-3884 CVE-2025-12543 Upgrade Undertow to 2.3.21.Final

WFCORE-7475 Upgrade Undertow to 2.4.x

(2 is incorporated by)

Involved:: Alessio Soldano, Bartosz Baranowski, Brad Maxwell, Brian Stansberry, Carlo de Wolf, Chess Hazlett, Daniel Kreling, Darran Lofthouse, Farah Juma, Flavia Rainone, Ilia Vassilev, Ingo Weiss, Lin Gao, Martin Stefanko, Martin Svehla, Masafumi Miura, Michaela Osmerova, Miroslav Sochurek, Neil Wallace, Paramvir Jindal, Peter Mackay, Radovan Stancel, Stefano Maestri, Tom Jenkinson, Vladimir Dosoudil, Yeray Borges Santana