Eclipse
/
jetty.project
mirror of https://github.com/jetty/jetty.project.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

366774 removed XSS vulnerbility

This commit is contained in:
Greg Wilkins 2012-01-09 11:38:07 +11:00
parent c88a4551ae
commit 2451614381
1 changed files with 2 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
jetty-server/src/main/java/org/eclipse/jetty/server/Request.java
View File

@ -1027,12 +1027,11 @@ public class Request implements HttpServletRequest
try try
{ {
if (_connection != null) if (_connection != null)
_connection._generator.sendError(HttpStatus.BAD_REQUEST_400,"Port couldn't be parsed from Host header: " + hostPort,null, _connection._generator.sendError(HttpStatus.BAD_REQUEST_400,"Bad Host header",null,true);
true);
} }
catch (IOException e1) catch (IOException e1)
{ {
throw new IllegalArgumentException("IOException caught while trying to send error due to invalid host header: " + hostPort,e1); throw new RuntimeException(e1);
} }
} }
return _serverName; return _serverName;