jetty-http-spi-9.4.58-150200.3.34.1<>,NN{aS~}<7;N@lϸWB&g iy9d)H޳6qF:`-ܘu)HV_7ˇ(t q+1:G\|<}tqKBX]~ RUg>qh'oHuz0G$MgvMys^PN*>>*8?*(d & D-Nd z     H\(89 : F%G&H&I&(X&0Y&@\&]&^&b'^c(d(e(f(l(u(v(w)x)y)z))))*$Cjetty-http-spi9.4.58150200.3.34.1The http-spi module for Jetty Jetty is a 100% Java HTTP Server and Servlet Container. This means that you do not need to configure and run a separate web server (like Apache) in order to use Java, servlets and JSPs to generate dynamic content. Jetty is a fully featured web server for static and dynamic content. Unlike separate server/container solutions, this means that your web server and web application run in the same process, without interconnection overheads and complications. Furthermore, as a pure java component, Jetty can be simply included in your application for demonstration, distribution or deployment. Jetty is available on all Java supported platforms. This package contains The http-spi module for Jetty.h1h01-ch3cj`SUSE Linux Enterprise 15SUSE LLC Apache-2.0 OR EPL-1.0https://www.suse.com/Productivity/Networking/Web/Servershttps://www.eclipse.org/jetty/linuxnoarchTBA큤A큤h1h1h1h1h1e66046c9f5f2070a3da23e94277cc303c71c12830100c5826e1986ea5a34f36805e67c86e45e463c799b088f090df58a53328721d7bf472e19cb301656f5a795ad3041e541fa5947646c9a9981272512c6a965ee773ef7848e46981d83f29395rootrootrootrootrootrootrootrootrootrootjetty-minimal-9.4.58-150200.3.34.1.src.rpmjetty-http-spimvn(org.eclipse.jetty:jetty-http-spi)mvn(org.eclipse.jetty:jetty-http-spi:pom:)osgi(org.eclipse.jetty.http.spi)@ @    java-headlessjavapackages-filesystemrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)1.83.0.4-14.6.0-14.0-15.2-14.14.1h[h4Wg1g@g@gY@ee?e'd^@djdS@cGb@bBb9@an@`i@`i@`ٹ`@`f@`KW_@_^@^]߶]X]d@fstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comshvetz.anton@gmail.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comdimstar@opensuse.orgfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comshvetz.anton@gmail.comfstrba@suse.comrpm@fthiessen.defstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.comfstrba@suse.com- Upgrade to version 9.4.58.v20250814 * Changes + #13461 - 9.4.x HTTP2Session cleanups - Addresses CVE-2025-5115, bsc#1244252 + #13261 - Improve handling of failed HTTP/2 requests + #461 - Move ServletTester to the test source directory- Upgrade to version 9.4.57.v20241219 * Security fixes: + CVE-2024-6763, bsc#1231652: the HttpURI class does insufficient validation on the authority segment of a URI + CVE-2024-13009, bsc#1243271: Gzip Request Body Buffer Corruption * Changes: + #12268 - IteratingCallback may iterate too much when process() returns Action.IDLE + #12648 - Backport improved handling of bad Gzip content (and Gzip Exceptions) + #12532 - Backport of deprecation of UserInfo on URI (in violation of RFC2616 spec)- Added patch: * jetty-port-to-servlet-4.0.patch + Fix build against the javax.servlet-api 4.x- Package the infrastructure pom artifacts too- Fix the Group tag for jetty-server subpackage - Clean up spec files- Upgrade to version 9.4.56.v20240826 * Security fixes: + CVE-2024-8184, bsc#1231651, ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks * Changes: + #12201 backport ThreadLimitHandler improvements from Jetty 12 + #11938 - Updating URL refs from eclipse.org/jetty and eclipse.dev/jetty to jetty.org (including XML dtd references) + #10805 - Jetty response with an invalid HTTP2 packet if the client set the hpack table size as 0- Upgrade to version 9.4.54.v20240208 * Security fixes + CVE-2024-22201, bsc#1220437: HTTP/2 connection not closed after idle timeout when TCP congested * Other changes + #1256 DoSFilter leaks USER_AUTH entries + #11389 Strip default ports on ws/wss scheme uris too- Do not force Java 11 to build on i586- Upgrade to version 9.4.53.v20231009 * Fixes of 9.4.53.v20231009 + CVE-2023-44487, bsc#1216169 + CVE-2023-36478, bsc#1216162 + #10679 - backport HTTP/2 rate control from Jetty 10.0.x + #10573 - backport hpack improvements from Jetty 10.0.x + #10546 - backport jetty-http Huffman encoders/decoders from Jetty 10.0.x * Fixes of 9.4.52.v20230823 + #10352 - Jetty accepts "+" prefixed value in Content-Length (CVE-2023-40167, bsc#1215417) + #10337 - SizeLimitHandler does not enforce 0 responseLimit + #10169 - make sure that a ServiceLoader is retrieved before iterating + #10066 - Allow SAXParserFactory or SAXParser to be configured in Jetty's XmlParser class - Allows for GHSA-58qw-p7qm-5rvh workaround + #9887 - Deprecate CGI Servlet (CVE-2023-36479, bsc#1215415) + #9716 - Deprecate PushSessionCacheFilter + #9660 - OpenId Revoked authentication allows one request (CVE-2023-41900, bsc#1215416) + #9476 - onCompleteFailure called multiple times- Reproducible builds: use SOURCE_DATE_EPOCH for timestamp- Update to version 9.4.51.v20230217 * Fixes of 9.4.49.v20220914: + #8578 - getRequestURL can append "null" if getRequestURI is unspecified in an authority-form request-target + #8493 - Review HTTP client feature setRemoveIdleDestinations * Fixes of 9.4.50.v20221201: + #8774 - Added SizeLimitHandler + #8678 - Jetty client is not responding to GO_AWAY packet received from (Jetty) Server and continue to send traffic on same connection * Fixes of 9.4.51.v20230217: + #9352 - Update / Fix CookieCutter + #9345 - Backport Multipart Fix for CVE-2023-26048, bsc#1210620 + #9352 - Backport Cookie Parsing Fix for CVE-2023-26049, bsc#1210621- Add _multibuild to define 2nd spec file as additional flavor. Eliminates the need for source package links in OBS.- Force building with java 11 on ix86 in order to avoid random build failures- Upgrade to version 9.4.48.v20220622 * Fixes + #8184 - All suffix globs except first fail to match if path has "." character in prefix section + #8145 - RegexPathSpec backport of optional group name/info lookup if regex fails + #8088 - Add option to configure exitVm on ShutdownMonitor from System properties + #8067 - Wall time usage in DoSFilter RateTracker results in false positive alert + #8014 - Review HttpRequest URI construction (Resolves CVE-2022-2047, bsc#1201317) + #7976 - Add TRANSFER_ENCODING violation for MultiPart RFC7578 parser + #7947 - Improved PathSpec handling for servletName & pathInfo + #7935 - Review HTTP/2 error handling (Resolves CVE-2022-2048, bsc#1201316) + #7918 - PathMappings.asPathSpec does not allow root ServletPathSpec + #7863 - Default servlet drops first accept-encoding header if there is more than one. + #7858 - GZipHandler does not play nice with other handlers in HandlerCollection + #7837 - Fix StatisticsHandler in the case a Handler throws exception + #7809 - Jetty 9.4.x 7801 duplicate set session cookies + #7748 - Allow overriding of url-pattern mapping in ServletContextHandler to allow for regex or uri-template matching- Upgrade to version 9.4.46.v20220328 * Changes + Option --write-module-graph produces wrong .dot file + ArrayTrie getBest fails to match the empty string entry in certain cases + Interrupt flag is not always cleared in between requests + Gzip compression not working for multipart/form-data when added to the allowed list using addIncludedMimeTypes. + Miconfigured headerCacheSize in can result in IllegalArgumentException + HttpServletResponse.encodeURL not working for URLs starting with ../- Build with java source and target levels 8 - Fix javadoc generation on JDK >= 13- Make importing of package sun.misc optional since not all jdk versions export it- Splitting the jetty-unixsocket artifact into a separate spec file in order to avoid extra dependencies for the jetty-minimal package.- Update to version 9.4.43.v20210629 * Fix: bsc#1188438, CVE-2021-34429 * Changes: + Improve alias checking in PathResource + java.nio.ReadOnlyBufferException + Deprecate support for UTF16 encoding in URIs + Update to spifly 1.3.3 + Update to asm 9.1- Package modules: ant, cdi, deploy, fcgi, http-spi, quickstart, rewrite, start, unixsocket- Update to version 9.4.42.v20210604 * Fix: bsc#1187117, CVE-2021-28169- Update to version 9.4.40.v20210413 * Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when client send data length > 17408 * Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs * Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory from deployment scan- Upgrade to upstream version 9.4.38.v20210224 * Fixes bsc#1182898, CVE-2020-27223- Upgrade to upstream version 9.4.35.v20201120 * Fixes bsc#1179727, CVE-2020-27218- Upgrade to upstream version 9.4.30.v20200611- Upgrade to upstream version 9.4.27.v20200227- Removed patch: * jetty-annotations-asm6.patch + not needed when building against ASM7- Upgrade to upstream version 2.9.22.v20191022 * new jetty-openid amd jetty-util-ajax sub-packages - Modified patch: * jetty-annotations-asm6.patch + adapt to changed context + build against asm6 instead of asm7 that we don't have - Fix some rpmlint warnings and errors- Initial packaging of a minimal version of jetty 9.4.19.v20190610 * This version is light on dependenciesh01-ch3c 17558532789.4.58-150200.3.34.19.4.58.v202508149.4.58.v202508149.4.58jettyjetty-http-spi.jarjetty-minimal-jetty-http-spi.xmljettyjetty-http-spi.pom/usr/share/java//usr/share/java/jetty//usr/share/maven-metadata//usr/share/maven-poms//usr/share/maven-poms/jetty/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:40321/SUSE_SLE-15-SP2_Update/2b6f776051d47a6a662028da496a49ba-jetty-minimal.SUSE_SLE-15-SP2_Updatedrpmxz5noarch-suse-linuxdirectoryASCII text, with CRLF line terminators (Zip archive data, at least v2.0 to extract Zip archive data, at least v2.0 to extract)XML 1.0 document, ASCII textexported SGML document, ASCII textPPPRR>k;yl{uutf-869716fad4b2ff0153171edf1298531e58db229ce68030f46ad3456d135cfd707? 7zXZ !t/ ]"k%'lJEWWvӞx=-1biL _`QZ_AK,Zg="$(4k(Lhd=GA27K&ͬgcSV{o7 [&jøX0@q?$|YDʷӄ#D%FIK(cŞ+"vc-n+ٷEW홐'DWuG:ZG玹ҷmI:p)Ͽ!# 뒷RY&sBxBxv@ksq|q፪w[hY3#$/1-Klu{g\K"I305Pu=!CiO4 -#&V0\7pQ.EQHzYn5N zjI7L+s _}.6mS(Y@O//:OE@dGsfҴ:SӽKn'\[a˟(; ozIϞ%P h.Q_ Y`lհU |f&~_(!d7x[恺oڞtGyo&T7NwPqt/4}/Qt/ DC}&6F +|xf|O.atXr\ |IyS%i6oפ6}_YXmkԥk_MTqc lJt_r_[K((/;ufvL;E|מx_;w!L.wcBa.c٣k|]SF4S>Q&m9Ry\i}(P= 4ZC;; jM.X4RbHsZ4v&m}hc$R$yJC!e"s!ۛl@ itd<4CyC}vS}츔L&I> U02ps0yQ>w|UB_EpkMbesWᒲ =_c)Åw`&9)N1-{~?̷zcIt'0B`3}rRR#9;w B̒Ug[TY_$Q nmބݶ<,A"eŰ!ldqk"Is-J[{:-<}9u[?qR~,ыlW V$T-^H:fv'C̀=Cc \,sSգ\}uq2s kr11C&eTFћ ;#wcpuh'&Ъi N̸p?@(xq}xݱdf.P'Z=;Gw :0VÍdE]s32:lSS$`f驏'u:63[UF'46@VqJ4HO ~UʯٳERz Ɨc}9XR?5XEaOXAf- qL!םD酦&i\"a&3#YӠhhnHgi Q@\d$韱칄/B jg0rq@ ˵gcl d;8T|ڄ:iW|w6]FB}@mvߐҍ0r#6Čxk֍w u~/@']Af֗<?M>US8.zht q#W~F{1 G,2ɅMKHf"q@YT!AM4pUPڑUELٱMJa Ʈa_fO hS?ov%}qӼm] dU;̈6xxǼ2QժOޠ[mŮ)t d_yO#?PgSI>3syytN& 6%j}9&PdˇޏrWEp4-g+6ZL*`r.gڏ,_@NiW-ʀLi!P =rN볹2[ e x-]l8u^$a%Idt5zIGо 1Pcrb~]Ԋ;@ B͸-5{\C;Q BmpyE`JL9@GғG`6FFrcN{B!V>ge#ȸd:#T`egǸuiB!J;.=M ݪ+VnURƛjSPP0g=E,_`@)X5=k,H": &T=l[zy77x6?`%2ߦ21֜ĒCnQ vJ{ieoE鸊wiEz"Y^" 14r'L8x"/FǼFt7$euۤ&Mw0`įeo,q].V=(ѓ%X!yBXWfA}*['[aC3n'+C+ FDLZ˶m֔f)S#?r_Ʀ։ w|-Hx(5fR/^S]ؓa5#A't5[KdA\B@"Ý"*XC7K'杳jlu=`HI1tmVvt,w nhi ϢRW B݀ȋ-+!@[FBQTw;(R{8&k4}<{~^)P(7z cFwc,u.`"QM,LiEC((4X_Qy90ON%>|DQvh-t)6As.L&mc0*u]b^e:~ M;kio4d= ~M筜qNoܜ<m`(|KgݨD:KLJ]諓}x:80y YZ