������jetty-http-spi-9.4.54-150200.3.25.1���������������������������������������������������������������<���>�������,���������������������������������������������������4\�����e��p9|�� ��h{R�M֛pױii��3[�ڒ\@KFP��@W�J)Pײ�PH
}+b3Ps'�",Y+C�<~jF_\BJM�|%tɰ˳%mXQȄ_A*S~9@g](��bOܜ{J2��B��.��z�7zyxgiXe)6P�{�DCz:~yG��ԙP#'RNG���ZAB9n;�=Ɓ���>��������������������>��#���?������#�������d��������������������������������������������������������������� ���&���������� ���D��������������������������������������������������������������������������-��������������N��������������d���������� ���z������������������������������������������������������������������������������� ��������������
���������������������������������������������
���������������������������������������������������������������������H���������������\����������������������������������������������������(��������������8��������������9���������������:��������������F��������������G��������������H��������������I��������������X��������������Y��������������\������ 4�������]������ H�������^������ �������b������!��������c������!�������d������"C�������e������"H�������f������"K�������l������"M�������u������"`�������v������"t�������w������#(�������x������#<�������y������#P�������z������#d�������������#t�������������#x�������������#~�������������#����C�jetty-http-spi�9.4.54�150200.3.25.1�The http-spi module for Jetty�
Jetty is a 100% Java HTTP Server and Servlet Container. This means that you
do not need to configure and run a separate web server (like Apache) in order
to use Java, servlets and JSPs to generate dynamic content. Jetty is a fully
featured web server for static and dynamic content. Unlike separate
server/container solutions, this means that your web server and web
application run in the same process, without interconnection overheads
and complications. Furthermore, as a pure java component, Jetty can be simply
included in your application for demonstration, distribution or deployment.
Jetty is available on all Java supported platforms.
This package contains The http-spi module for Jetty.��e��h04-ch2a������kDSUSE Linux Enterprise 15�SUSE LLC �Apache-2.0 OR EPL-1.0�https://www.suse.com/�Productivity/Networking/Web/Servers�https://www.eclipse.org/jetty/�linux�noarch���������T&�� 3������
A큤A큤����������e�e�e�e�e��8336c10316390e66672aebf5df1df133d69055ff4d5d9e2f72296cc8a9265147�32a69a36c3a619719640ac61b8b0cecf5165e4c7ebaad54f68dde7ca865c6610��66fe9d066ea4179de8e5f545fe50a0053c3abd91357b8ad0dcdaa24795703183����������������������������root�root�root�root�root�root�root�root�root�root�jetty-minimal-9.4.54-150200.3.25.1.src.rpm����jetty-http-spi�mvn(org.eclipse.jetty:jetty-http-spi)�mvn(org.eclipse.jetty:jetty-http-spi:pom:)�osgi(org.eclipse.jetty.http.spi)������@���@����
���
���
���
java-headless�javapackages-filesystem�rpmlib(CompressedFileNames)�rpmlib(FileDigests)�rpmlib(PayloadFilesHavePrefix)�rpmlib(PayloadIsXz)�1.8��3.0.4-1�4.6.0-1�4.0-1�5.2-1�4.14.1����ee?e'd^@dj�dS@cGb�@bBb9@an@`i@`i@`ٹ`@`f@`KW_�@_^@^]߶]X]d@fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�dimstar@opensuse.org�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�shvetz.anton@gmail.com�fstrba@suse.com�rpm@fthiessen.de�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�fstrba@suse.com�- Upgrade to version 9.4.54.v20240208
* Security fixes
+ CVE-2024-22201, bsc#1220437: HTTP/2 connection not closed
after idle timeout when TCP congested
* Other changes
+ #1256 DoSFilter leaks USER_AUTH entries
+ #11389 Strip default ports on ws/wss scheme uris too�- Do not force Java 11 to build on i586�- Upgrade to version 9.4.53.v20231009
* Fixes of 9.4.53.v20231009
+ CVE-2023-44487, bsc#1216169
+ CVE-2023-36478, bsc#1216162
+ #10679 - backport HTTP/2 rate control from Jetty 10.0.x
+ #10573 - backport hpack improvements from Jetty 10.0.x
+ #10546 - backport jetty-http Huffman encoders/decoders from
Jetty 10.0.x
* Fixes of 9.4.52.v20230823
+ #10352 - Jetty accepts "+" prefixed value in Content-Length
(CVE-2023-40167, bsc#1215417)
+ #10337 - SizeLimitHandler does not enforce 0 responseLimit
+ #10169 - make sure that a ServiceLoader is retrieved before
iterating
+ #10066 - Allow SAXParserFactory or SAXParser to be configured
in Jetty's XmlParser class - Allows for GHSA-58qw-p7qm-5rvh
workaround
+ #9887 - Deprecate CGI Servlet (CVE-2023-36479, bsc#1215415)
+ #9716 - Deprecate PushSessionCacheFilter
+ #9660 - OpenId Revoked authentication allows one request
(CVE-2023-41900, bsc#1215416)
+ #9476 - onCompleteFailure called multiple times�- Reproducible builds: use SOURCE_DATE_EPOCH for timestamp�- Update to version 9.4.51.v20230217
* Fixes of 9.4.49.v20220914:
+ #8578 - getRequestURL can append "null" if getRequestURI is
unspecified in an authority-form request-target
+ #8493 - Review HTTP client feature setRemoveIdleDestinations
* Fixes of 9.4.50.v20221201:
+ #8774 - Added SizeLimitHandler
+ #8678 - Jetty client is not responding to GO_AWAY packet
received from (Jetty) Server and continue to send traffic on
same connection
* Fixes of 9.4.51.v20230217:
+ #9352 - Update / Fix CookieCutter
+ #9345 - Backport Multipart Fix for CVE-2023-26048, bsc#1210620
+ #9352 - Backport Cookie Parsing Fix for CVE-2023-26049,
bsc#1210621�- Add _multibuild to define 2nd spec file as additional flavor.
Eliminates the need for source package links in OBS.�- Force building with java 11 on ix86 in order to avoid random
build failures�- Upgrade to version 9.4.48.v20220622
* Fixes
+ #8184 - All suffix globs except first fail to match if path
has "." character in prefix section
+ #8145 - RegexPathSpec backport of optional group name/info
lookup if regex fails
+ #8088 - Add option to configure exitVm on ShutdownMonitor from
System properties
+ #8067 - Wall time usage in DoSFilter RateTracker results in
false positive alert
+ #8014 - Review HttpRequest URI construction (Resolves
CVE-2022-2047, bsc#1201317)
+ #7976 - Add TRANSFER_ENCODING violation for MultiPart RFC7578
parser
+ #7947 - Improved PathSpec handling for servletName & pathInfo
+ #7935 - Review HTTP/2 error handling (Resolves CVE-2022-2048,
bsc#1201316)
+ #7918 - PathMappings.asPathSpec does not allow root
ServletPathSpec
+ #7863 - Default servlet drops first accept-encoding header if
there is more than one.
+ #7858 - GZipHandler does not play nice with other handlers in
HandlerCollection
+ #7837 - Fix StatisticsHandler in the case a Handler throws
exception
+ #7809 - Jetty 9.4.x 7801 duplicate set session cookies
+ #7748 - Allow overriding of url-pattern mapping in
ServletContextHandler to allow for regex or uri-template
matching�- Upgrade to version 9.4.46.v20220328
* Changes
+ Option --write-module-graph produces wrong .dot file
+ ArrayTrie getBest fails to match the empty string entry in
certain cases
+ Interrupt flag is not always cleared in between requests
+ Gzip compression not working for multipart/form-data when
added to the allowed list using addIncludedMimeTypes.
+ Miconfigured headerCacheSize in can result in
IllegalArgumentException
+ HttpServletResponse.encodeURL not working for URLs starting
with ../�- Build with java source and target levels 8
- Fix javadoc generation on JDK >= 13�- Make importing of package sun.misc optional since not all jdk
versions export it�- Splitting the jetty-unixsocket artifact into a separate spec file
in order to avoid extra dependencies for the jetty-minimal
package.�- Update to version 9.4.43.v20210629
* Fix: bsc#1188438, CVE-2021-34429
* Changes:
+ Improve alias checking in PathResource
+ java.nio.ReadOnlyBufferException
+ Deprecate support for UTF16 encoding in URIs
+ Update to spifly 1.3.3
+ Update to asm 9.1�- Package modules: ant, cdi, deploy, fcgi, http-spi, quickstart,
rewrite, start, unixsocket�- Update to version 9.4.42.v20210604
* Fix: bsc#1187117, CVE-2021-28169�- Update to version 9.4.40.v20210413
* Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when
client send data length > 17408
* Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs
* Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory
from deployment scan�- Upgrade to upstream version 9.4.38.v20210224
* Fixes bsc#1182898, CVE-2020-27223�- Upgrade to upstream version 9.4.35.v20201120
* Fixes bsc#1179727, CVE-2020-27218�- Upgrade to upstream version 9.4.30.v20200611�- Upgrade to upstream version 9.4.27.v20200227�- Removed patch:
* jetty-annotations-asm6.patch
+ not needed when building against ASM7�- Upgrade to upstream version 2.9.22.v20191022
* new jetty-openid amd jetty-util-ajax sub-packages
- Modified patch:
* jetty-annotations-asm6.patch
+ adapt to changed context
+ build against asm6 instead of asm7 that we don't have
- Fix some rpmlint warnings and errors�- Initial packaging of a minimal version of jetty 9.4.19.v20190610
* This version is light on dependencies�h04-ch2a 1709120276����������������������������������������������������������������9.4.54-150200.3.25.1�9.4.54.v20240208�9.4.54.v20240208�9.4.54�����������������������jetty�jetty-http-spi.jar�jetty-minimal-jetty-http-spi.xml�jetty�jetty-http-spi.pom�/usr/share/java/�/usr/share/java/jetty/�/usr/share/maven-metadata/�/usr/share/maven-poms/�/usr/share/maven-poms/jetty/�-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -g�obs://build.suse.de/SUSE:Maintenance:32807/SUSE_SLE-15-SP2_Update/83b277a2843c74493c11825545dc8327-jetty-minimal.SUSE_SLE-15-SP2_Update�drpm�xz�5�noarch-suse-linux����������������������directory�ASCII text, with CRLF line terminators (Zip archive data, at least v2.0 to extract Zip archive data, at least v2.0 to extract)�XML 1.0 document, ASCII text�ASCII text��������������������������������������������P���P���P���R���R����W2a7����utf-8�d0e9f499b6c4b209e82f7c5e14fa4c07b2097a2d7035d08567d035cbd2d7be51���������?���� ����7zXZ��
���!�����t/�'�=]�"��k%'�lJ�EWW�vӞx=-1Bm 8i�E=֏uYEm�ݛHMCh44Z��OA)f�+cM���jygo�@>=`�DeW�=(y&5^iIoL@7[�g^5Ө*x-J11p$ThpH��(=�jZ`5�a ԶO%ν=�D�@-�9tھ[
�b��9[~l�{�ezgv_ڝ�U��G?\� {tx�J0\/I�hqm-�Qk�H�3·nV+\�a] H'S�R�V5�fޭiCB6�\3�s�?�b�\O��5��I0���j�G3NpҰ׆eYVO�3v_�Q4�S��A]�dz0̄�/C�h&vy�=xct�n�B��;W�,�0!Ģ;gv�x �r�9ˡG5�O�Y�ؿ\Z(ƛu8�X;nb�zɋ|E $/H��q�GUkA�r郂3N鷉` ��J�yJA8/1MX&~Wz,9��ں`�5�ݓ^d{G1r�pu
*b_B{Hh,^kM9]ܪ��H
�aC?��"�'���wHhwThR^;y�,u�,q )>M0�Hj�_ut*�B9>sY_�v"Q�kp`kl��}36wƷ*.$`W� ~�68���<(s;_ܮz��<-:@&�Ы�&'~D-[t���0ώ{�ɧ�+���ΊDln2T/S zV5BXJM��� SҐ95hPo�`zD��v5NlͩgR0"[(�".]))φOZ�22�%�F�J|CFf�i~�8~�J�[t�;GĬvۊտ4�Na�n^89E�^r2)]4jiCi<'u;Sj;\s!p#�7n34D6N��iD4j"�*P`-wwB�>6�RI$�$�&t1Veg2r�I�ֿ*cy��Nve ^�rW�d�O1"n��U\�b=<�O&�~+4$�Xĝ+ډ`{K�Ϭ�o�8�+�Ħn��3���� _I��Z ZsR#P?5
??{S5z���LeA�=��3-?�$lO��eiZlhYF̌Ug4�Ek?b�#C!�N�$g/e_s�S؉O�27�7ߕ$�P )5�#C;\�Z@K
��)(I��]a> G I�TMں,z;�hP:1}�p6ҩcۓ lwH�O�8k
Z�{Ѳ
j�܁2Rsm3�h5�'{���)F�tX�bht=&P�y�ܶ?3�[|G� _[z�=R?Z�*P�~GEVM;+J:A{'m
[�-�(A\9_�Q:-~sR\K�4W��>�e�S]�MoBp,Ư0ŐP� @��:�n�FP\u}w@�C<|&ur�P�O�[=Џ_/:6�W@ψ2�U_-{l3'�s5��mщ&/]ie8HݝhrU8\�Iat
gO](;(u��f6m�xwns�r6SP���
mݞ:1E��|?֥��mLaƐ8�=�`fU/`09z�CD~�O�iZIV�-'��ksM֜u�g3�f��*xu:�gHHi*pdx��Mȭڸ�
1q #Z]N�V>վ&!�TZ�ܱ��4QNy���\t�1|d;�Puyrm&x=Z0'���b��("ZI�E}fs���l)���sg�L*�b;�Z9��Ĭj,,c�t��e�raȇ�g�5I�v�T$a���TFc�?d&Sǧ)4|>e2a'۱ƞ7_7�}*Nr�WR�bYd��>;A���J+�(�ujX��coV5�rE
rh\+݆�&ּFŗ^'~�X�ޣ:T�]GBi�
V,ߢ�gh:��t�2!�
5�
��~>{�y!u^?![Iv[&h_&Ŗqk$?L �y�?P�,�f۩$�+ȷ�>A.�5~r)Ţ!ep!Ió<1X0�
xèW��#o t=bU42tʱh�T.W,7"XlyBON
�f�%rzfи�;Dc4փ�Hy4}%M�2�x�b*5��:diȓ/\ݶ��q}5�hz*g������&
���cwOϏ�G�X5Q���:��(������
YZ