Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-36800

Update embedded Tomcat to 7.0.57+

    XMLWordPrintable

Details

    • We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion.

      See http://tomcat.apache.org/tomcat-7.0-doc/changelog.html for details
      Notably related to OFBIZ-5848 (Poodle) changes in Coyot

      1. support for TLSv1.1 and TLSv1.2 for APR connector. Based upon a patch by Marcel Šebek. This feature requires Tomcat Native library 1.1.32 or later.
      2. Disable SSLv3 by default for JSSE based HTTPS connectors (BIO and NIO). The change also ensures that SSLv2 is disabled for these connectors although SSLv2 should already be disabled by default by the JRE.
      3. Disable SSLv3 by default for the APR/native HTTPS connector.

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-35386 SSLv3 Is Not Disabled When sslProtocol is Set to TLS, Vulnerable to POODLE

          • Medium - Medium priority issues
          • Closed

          Suggestion - JRASERVER-42347 Update embedded Tomcat to 7.0.58+

          • Closed
          relates to

          Suggestion - CONFCLOUD-36800 Update embedded Tomcat to 7.0.57+

          • Closed

          Activity

            People

              Unassigned Unassigned
              0db588d5c835 Ruby Paasche
              Votes:
              3 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: