jetty-websocket-servlet-9.4.58-150200.3.34.1<>,4h2p9|xfU'/'w?{CM' 0BR ~%W-x u!nyٴNE/ZϒX5a{teo]KH(JP"|5Rȥp ]6cUf0i}3e6~],Ƿ ȘHYH;O7*maN*=m57r :S*w7q0]%Q>$h?$Xd! / V 17@T ^ h | A H\u}(89:IF G 0H DI XX `Y p\ ] ^!"b!c"Bd"e"f"l"u"v# w#x#y#z#$$ $$TCjetty-websocket-servlet9.4.58150200.3.34.1The websocket-servlet module for Jetty%{extdesc} The websocket-servlet module for Jetty.h2h03-ch2cdSUSE Linux Enterprise 15SUSE LLC Apache-2.0 OR EPL-1.0https://www.suse.com/Unspecifiedhttps://www.eclipse.org/jetty/linuxnoarchOL A큤A큤h2h2h2h2h288991c1713e6a532ea8b3f3b834b383e8ff78930f76f66f77ae573e7542f0547d8ec8012491bcc3b6be7adfa38f902947d971b18aa2a6da8f8bde8d67ac48ad3b94aefe4bb38790a3c11d89feca2e83647294724320bd3e6d0eb510e7bbeddf3rootrootrootrootrootrootrootrootrootrootjetty-websocket-9.4.58-150200.3.34.1.src.rpmjetty-websocket-servletmvn(org.eclipse.jetty.websocket:websocket-servlet)mvn(org.eclipse.jetty.websocket:websocket-servlet:pom:)osgi(org.eclipse.jetty.websocket.servlet)@ @@@    java-headlessjavapackages-filesystemmvn(javax.servlet:javax.servlet-api)mvn(org.eclipse.jetty.websocket:websocket-api)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)1.89.4.58.v202508143.0.4-14.6.0-14.0-15.2-14.14.1h[h4WgY@ee'd^@djb@bBb9@an@`i@`@`f@`KW_@_^@^]߶]Xfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comrpm@fthiessen.defstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.com- Upgrade to version 9.4.58.v20250814 * Changes + #13461 - 9.4.x HTTP2Session cleanups - Addresses CVE-2025-5115, bsc#1244252 + #13261 - Improve handling of failed HTTP/2 requests + #461 - Move ServletTester to the test source directory- Upgrade to version 9.4.57.v20241219 * Security fixes: + CVE-2024-6763, bsc#1231652: the HttpURI class does insufficient validation on the authority segment of a URI + CVE-2024-13009, bsc#1243271: Gzip Request Body Buffer Corruption * Changes: + #12268 - IteratingCallback may iterate too much when process() returns Action.IDLE + #12648 - Backport improved handling of bad Gzip content (and Gzip Exceptions) + #12532 - Backport of deprecation of UserInfo on URI (in violation of RFC2616 spec)- Upgrade to version 9.4.56.v20240826 * Security fixes: + CVE-2024-8184, bsc#1231651, ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks * Changes: + #12201 backport ThreadLimitHandler improvements from Jetty 12 + #11938 - Updating URL refs from eclipse.org/jetty and eclipse.dev/jetty to jetty.org (including XML dtd references) + #10805 - Jetty response with an invalid HTTP2 packet if the client set the hpack table size as 0- Upgrade to version 9.4.54.v20240208 * Security fixes + CVE-2024-22201, bsc#1220437: HTTP/2 connection not closed after idle timeout when TCP congested * Other changes + #1256 DoSFilter leaks USER_AUTH entries + #11389 Strip default ports on ws/wss scheme uris too- Upgrade to version 9.4.53.v20231009 * Fixes of 9.4.53.v20231009 + CVE-2023-44487, bsc#1216169 + CVE-2023-36478, bsc#1216162 + #10679 - backport HTTP/2 rate control from Jetty 10.0.x + #10573 - backport hpack improvements from Jetty 10.0.x + #10546 - backport jetty-http Huffman encoders/decoders from Jetty 10.0.x * Fixes of 9.4.52.v20230823 + #10352 - Jetty accepts "+" prefixed value in Content-Length (CVE-2023-40167, bsc#1215417) + #10337 - SizeLimitHandler does not enforce 0 responseLimit + #10169 - make sure that a ServiceLoader is retrieved before iterating + #10066 - Allow SAXParserFactory or SAXParser to be configured in Jetty's XmlParser class - Allows for GHSA-58qw-p7qm-5rvh workaround + #9887 - Deprecate CGI Servlet (CVE-2023-36479, bsc#1215415) + #9716 - Deprecate PushSessionCacheFilter + #9660 - OpenId Revoked authentication allows one request (CVE-2023-41900, bsc#1215416) + #9476 - onCompleteFailure called multiple times- Reproducible builds: use SOURCE_DATE_EPOCH for timestamp- Update to version 9.4.51.v20230217 * Fixes of 9.4.49.v20220914: + #8578 - getRequestURL can append "null" if getRequestURI is unspecified in an authority-form request-target + #8493 - Review HTTP client feature setRemoveIdleDestinations * Fixes of 9.4.50.v20221201: + #8774 - Added SizeLimitHandler + #8678 - Jetty client is not responding to GO_AWAY packet received from (Jetty) Server and continue to send traffic on same connection * Fixes of 9.4.51.v20230217: + #9352 - Update / Fix CookieCutter + #9345 - Backport Multipart Fix for CVE-2023-26048, bsc#1210620 + #9352 - Backport Cookie Parsing Fix for CVE-2023-26049, bsc#1210621- Upgrade to version 9.4.48.v20220622 * Fixes + #8184 - All suffix globs except first fail to match if path has "." character in prefix section + #8145 - RegexPathSpec backport of optional group name/info lookup if regex fails + #8088 - Add option to configure exitVm on ShutdownMonitor from System properties + #8067 - Wall time usage in DoSFilter RateTracker results in false positive alert + #8014 - Review HttpRequest URI construction (Resolves CVE-2022-2047, bsc#1201317) + #7976 - Add TRANSFER_ENCODING violation for MultiPart RFC7578 parser + #7947 - Improved PathSpec handling for servletName & pathInfo + #7935 - Review HTTP/2 error handling (Resolves CVE-2022-2048, bsc#1201316) + #7918 - PathMappings.asPathSpec does not allow root ServletPathSpec + #7863 - Default servlet drops first accept-encoding header if there is more than one. + #7858 - GZipHandler does not play nice with other handlers in HandlerCollection + #7837 - Fix StatisticsHandler in the case a Handler throws exception + #7809 - Jetty 9.4.x 7801 duplicate set session cookies + #7748 - Allow overriding of url-pattern mapping in ServletContextHandler to allow for regex or uri-template matching- Upgrade to version 9.4.46.v20220328 * Changes + Option --write-module-graph produces wrong .dot file + ArrayTrie getBest fails to match the empty string entry in certain cases + Interrupt flag is not always cleared in between requests + Gzip compression not working for multipart/form-data when added to the allowed list using addIncludedMimeTypes. + Miconfigured headerCacheSize in can result in IllegalArgumentException + HttpServletResponse.encodeURL not working for URLs starting with ../- Build with java source and target levels 8 - Fix javadoc generation on JDK >= 13- Make importing of package sun.misc optional since not all jdk versions export it- Update to version 9.4.43.v20210629 * Fix: bsc#1188438, CVE-2021-34429 * Changes: + Improve alias checking in PathResource + java.nio.ReadOnlyBufferException + Deprecate support for UTF16 encoding in URIs + Update to spifly 1.3.3 + Update to asm 9.1- Update to version 9.4.42.v20210604 * Fix: bsc#1187117, CVE-2021-28169- Update to version 9.4.40.v20210413 * Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when client send data length > 17408 * Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs * Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory from deployment scan * Improve handling of unconsumed content * Jetty start.jar always reports jetty.tag.version as master * HttpConnection.getBytesIn() incorrect for requests with chunked content * SslConnection compacting- Upgrade to upstream version 9.4.38.v20210224 * Fixes bsc#1182898, CVE-2020-27223- Upgrade to upstream version 9.4.35.v20201120 * Fixes bsc#1179727, CVE-2020-27218- Upgrade to upstream version 9.4.30.v20200611- Upgrade to upstream version 9.4.27.v20200227- Removed patch: * jetty-annotations-asm6.patch + not needed when building against ASM7- Initial packaging of the websocket submodules of jetty 9.4.22.v20191022h03-ch2c 17558534689.4.58-150200.3.34.19.4.58.v202508149.4.58.v202508149.4.58jettywebsocket-servlet.jarjetty-websocket-websocket-servlet.xmljettywebsocket-servlet.pom/usr/share/java//usr/share/java/jetty//usr/share/maven-metadata//usr/share/maven-poms//usr/share/maven-poms/jetty/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:40321/SUSE_SLE-15-SP2_Update/2b6f776051d47a6a662028da496a49ba-jetty-minimal.SUSE_SLE-15-SP2_Update:jetty-websocketdrpmxz5noarch-suse-linuxdirectoryASCII text, with CRLF line terminators (Zip archive data, at least v2.0 to extract Zip archive data, at least v2.0 to extract)XML 1.0 document, ASCII textPPPRRRR1ߞ_4p utf-8a764d0305fb305d4d6cd266d2bb5007bbe84e5113dabd6b4c946bafb28020397? 7zXZ !t/I L]"k%7.lJYyNF?56#{1&^O訒|! I5k{7b^fbLr)P ?*(]y"{ ?? +MS鎑2 bͩVoٓT~QzT\d~} Q(M&ec2h2!QUяNBG Չ7>Z;x?  mCUYXpQCv{_=U+-!` {'|Ͽo[eՖ%fǂ~z {EM T:a̫ۙ==z ;"D|R E=#Q:LE^qzŐ@(^w,v_yo^O#E[#8tș0g u_ʀTpaY]yjrܑLSE9p3юxUsE,_wݟ7m0 RUj-OEуOkJ[o咃E2Eh? e!ib(@Pf$Nje4/oX9avT/'lt RvDcː6oalW Ğo Wf󕘩*[^1}^Rct^Lr]jLX^m_&zV5cxZv(im۪$=/NyWΞLGngY:jr]"Nt gגI)R|*h?u &ޞ塩iHvEiw@&iz$HJQ%=(1R2[krpg'ҍeT1/1Ǡ "Sor!LVîK` [ƃM}Y4Pi5Lk4'}{x!:dXm*R@W 0a\3*p}L5{F#|ʘW`@)UOrSԛZA[Ǻ]Ƣ=I3BkA1L(~K-U80`S3gƕd2SPe-ۅ)vK<;)DABc@d`1loObUs 3wVsj42 3C* yӱHhZ-be;:[~PVf(I%k'`7v"t6Ҙm1Fu{!޳]dȔ-|jeOH]84@*فN+;_R5ZFۜffۄGxjcyĤ1:3oe_T09Ҥ c$)C#h' @N2WY3ͣΝ|E]JF-pe Ndǫtgy: XR?7`)zuG=i]֨G@<<ӟ&h"3xԑfi7uEy¬]lݍ]-x9ëSt"08ɔAZ#h5'Z@\ȅ .l>煔>Cwv1*T+:9bW'l@96ipĉ Zَ ̊|ew|N"_[&&t`e,0pIZNf.@^M855N?f~u L/2( tmLPMثGJ_JW * .}i֟yBy3IL:@t (i u Z,₩x:G8vx|1b>_$դ5V@Nvթ !LnvlבiY_#$^lIk gZfOdCX:=qpЏX!L :RSd:i$A [\hZPC3(V'm@FJn^zt(N:5H\}??lrx@wJsˮY.F JMvk=6Cl*Ȉ_q|QJ Z@WwCՈ] `kDnM SDHюX0 ;}ie\<$ß~(םNܱnvջJP N26j3 $Ok?  W ԃLQZ!y b Q P}~ 70T\gzjauouU)U|^d1k68lDg&8DF&-3>ԥc`p|W3ppM&cӓ ~2aod n:zgmqq/.]lp{´eV2qeq#6bֲŐ?@!_tiuIBQAXԏ͆.L@uF,h@JՠUݶOt] iQsY"/Ra8sE*2c\ ;aV4̈qQq+hv"Zɞ h҄fFa!h|ُ JvuъMfKI>O8K䋖YDv)v'K@ߥ(??U4I('Ъ;GwO Ǚ0Vg!qyrX ʑFV1PTpPm5+hkR7n0n~4hI m'"To F5 LIF+:ReKJSGH.nA fhk0PG=M ?hˁ93_]_m|45PHRqm0KŰ3j&[xۘ:؁][9T9 \ WTPӣHE8bR,UXpϯAVs%(l!P4(swN6 YZ