Content

Older news

Announcements from previous years can be found here:

2018-05-11 Tomcat 7.0.88 Released

The Apache Tomcat Project is proud to announce the release of version 7.0.88 of Apache Tomcat. This release contains a number of bug fixes and improvements compared to version 7.0.86. The notable changes compared to 7.0.86 include:

  • Correct a regression in handling of DataSource resources that do not specify a factory.
  • Implement configuration options to work-around specification non-compliant user agents (including all the major browsers) that do not correctly %nn encode URI paths and query strings as required by RFC 7230 and RFC 3986
  • Enable the CrawlerSessionManagerValve to correctly handle bots that crawl multiple hosts and/or web applications when the Valve is configured on a Host or an Engine.
  • Add support for annotation scanning of classes built with Java 11 EA

Full details of these changes, and all the other changes, are available in the Tomcat 7 changelog.

Download

2018-05-08 Tomcat 8.0.52 Released

The Apache Tomcat Project is proud to announce the release of version 8.0.52 of Apache Tomcat. Apache Tomcat 8.0.52 includes fixes for issues identified in 8.0.51 as well as other enhancements and changes. The notable changes compared to 8.0.51 include:

  • Implement configuration options to work-around specification non-compliant user agents (including all the major browsers) that do not correctly %nn encode URI paths and query strings as required by RFC 7230 and RFC 3986
  • Enable the CrawlerSessionManagerValve to correctly handle bots that crawl multiple hosts and/or web applications when the Valve is configured on a Host or an Engine.

Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.

Note: End of life date for Apache Tomcat 8.0.x is announced. Read more...

Download

2018-05-03 Tomcat 9.0.8 Released

The Apache Tomcat Project is proud to announce the release of version 9.0.8 of Apache Tomcat. The notable changes compared to 9.0.8 include:

  • Implement configuration options to work-around specification non-compliant user agents (including all the major browsers) that do not correctly %nn encode URI paths and query strings as required by RFC 7230 and RFC 3986
  • Enable the CrawlerSessionManagerValve to correctly handle bots that crawl multiple hosts and/or web applications when the Valve is configured on a Host or an Engine.
  • Add support for annotation scanning of classes built with Java 11 EA

Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.

Download

2018-05-03 Tomcat 8.5.31 Released

The Apache Tomcat Project is proud to announce the release of version 8.5.31 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.30 include:

  • Implement configuration options to work-around specification non-compliant user agents (including all the major browsers) that do not correctly %nn encode URI paths and query strings as required by RFC 7230 and RFC 3986
  • Enable the CrawlerSessionManagerValve to correctly handle bots that crawl multiple hosts and/or web applications when the Valve is configured on a Host or an Engine.
  • Add support for annotation scanning of classes built with Java 11 EA

Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.

Download

2018-04-13 Tomcat 7.0.86 Released

The Apache Tomcat Project is proud to announce the release of version 7.0.86 of Apache Tomcat. This release contains a number of bug fixes and improvements compared to version 7.0.85. The notable changes compared to 7.0.85 include:

  • Add support for the maxDays attribute to the AccessLogValve and ExtendedAccessLogValve. This allows the maximum number of days for which rotated access logs should be retained before deletion to be defined.
  • Avoid infinite recursion, when trying to validate a session while loading it with PersistentManager.

Full details of these changes, and all the other changes, are available in the Tomcat 7 changelog.

Warning: There is a regression in handling of DataSource resources that do not specify a factory. A simple configuration workaround is available. See bug 62316. This will be fixed in 7.0.87.

Download

2018-04-13 Tomcat 8.0.51 Released

The Apache Tomcat Project is proud to announce the release of version 8.0.51 of Apache Tomcat. Apache Tomcat 8.0.51 includes fixes for issues identified in 8.0.50 as well as other enhancements and changes. The notable changes compared to 8.0.50 include:

  • Avoid infinite recursion, when trying to validate a session while loading it with PersistentManager.

Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.

Note: End of life date for Apache Tomcat 8.0.x is announced. Read more...

Download

2018-04-07 Tomcat 9.0.7 Released

The Apache Tomcat Project is proud to announce the release of version 9.0.7 of Apache Tomcat. The notable changes compared to 9.0.6 include:

  • Add support for the maxDays attribute to the AccessLogValve and ExtendedAccessLogValve. This allows the maximum number of days for which rotated access logs should be retained before deletion to be defined.
  • Avoid infinite recursion, when trying to validate a session while loading it with PersistentManager.
  • Correct two protocol errors with HTTP/2 PUSH_PROMISE frames.
  • The OpenSSL engine SSL session will now ignore invalid accesses.

Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.

Download

2018-04-07 Tomcat 8.5.30 Released

The Apache Tomcat Project is proud to announce the release of version 8.5.30 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.29 include:

  • Add support for the maxDays attribute to the AccessLogValve and ExtendedAccessLogValve. This allows the maximum number of days for which rotated access logs should be retained before deletion to be defined.
  • Avoid infinite recursion, when trying to validate a session while loading it with PersistentManager.
  • Correct two protocol errors with HTTP/2 PUSH_PROMISE frames.
  • The OpenSSL engine SSL session will now ignore invalid accesses.

Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.

Download

2018-03-08 Tomcat 9.0.6 Released

The Apache Tomcat Project is proud to announce the release of version 9.0.6 of Apache Tomcat. The notable changes compared to 9.0.5 include:

  • TLS stability improvements.
  • Add the ability to specify static HTML responses for specific error codes and/or exception types with the ErrorReportValve.
  • Add an async HTTP/2 parser for NIO2.
  • Add documentation for the Host Manager web application. Patch provided by Marek Czernek.

Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.

Download

2018-03-08 Tomcat 8.5.29 Released

The Apache Tomcat Project is proud to announce the release of version 8.5.29 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.28 include:

  • TLS stability improvements.
  • Correct a regression in the fix for 60276 that meant compression was applied to all MIME types. Patch provided by Stefan Knoblich.
  • Add documentation for the Host Manager web application. Patch provided by Marek Czernek.

Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.

Download

2018-02-13 Tomcat 7.0.85 Released

The Apache Tomcat Project is proud to announce the release of version 7.0.85 of Apache Tomcat. This release contains a number of bug fixes and improvements compared to version 7.0.84.

Full details of these changes, and all the other changes, are available in the Tomcat 7 changelog.

Download

2018-02-13 Tomcat 8.0.50 Released

The Apache Tomcat Project is proud to announce the release of version 8.0.50 of Apache Tomcat. Apache Tomcat 8.0.50 includes fixes for issues identified in 8.0.49 as well as other enhancements and changes.

Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.

Note: End of life date for Apache Tomcat 8.0.x is announced. Read more...

Download

2018-02-11 Tomcat 9.0.5 Released

The Apache Tomcat Project is proud to announce the release of version 9.0.5 of Apache Tomcat. The notable changes compared to 9.0.4 include:

  • Refactor error handling to enable errors that occur before processing is passed to the application to be handled by the application provided error handling and/or the container provided error handling (ErrorReportValve) as appropriate.
  • Enable strict validation of the provided host name and port for all connectors. Requests with invalid host names and/or ports will be rejected with a 400 response.
  • Enhance the JMX support for jdbc-pool in order to expose PooledConnection and JdbcInterceptors.

Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.

Download

2018-02-11 Tomcat 8.5.28 Released

The Apache Tomcat Project is proud to announce the release of version 8.5.28 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.27 include:

  • Fix truncated request input streams when using NIO2 with TLS.
  • Improved error handling and reporting for TLS configuration.
  • Enhance the JMX support for jdbc-pool in order to expose PooledConnection and JdbcInterceptors.

Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.

Download

2018-01-24 Tomcat 7.0.84 Released

The Apache Tomcat Project is proud to announce the release of version 7.0.84 of Apache Tomcat. This release contains a number of bug fixes and improvements compared to version 7.0.82. The notable changes compared to 7.0.82 include:

  • Java 9 is fully supported
  • Updated the packaged version of the Tomcat Native Library to 1.2.16 to pick up the latest Windows binaries built with APR 1.6.3 and OpenSSL 1.0.2m
  • Add a new system property (org.apache.jasper.runtime.BodyContentImpl.BUFFER_SIZE) to control the size of the buffer used by Jasper when buffering tag bodies.

Full details of these changes, and all the other changes, are available in the Tomcat 7 changelog.

Download

2018-01-24 Tomcat 8.0.49 Released

The Apache Tomcat Project is proud to announce the release of version 8.0.49 of Apache Tomcat. Apache Tomcat 8.0.49 includes fixes for issues identified in 8.0.48 as well as other enhancements and changes. The notable changes compared to 8.0.48 include:

  • Add a new system property (org.apache.jasper.runtime.BodyContentImpl.BUFFER_SIZE) to control the size of the buffer used by Jasper when buffering tag bodies.

Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.

Note: End of life date for Apache Tomcat 8.0.x is announced. Read more...

Download

2018-01-22 Tomcat 8.5.27 Released

The Apache Tomcat Project is proud to announce the release of version 8.5.27 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.24 include:

  • Add support for GZIP compression with HTTP/2
  • Expand the TLS functionality exposed via the Manager application
  • Return a simple, plain text error message if a client attempts to make a plain text HTTP connection to a TLS enabled NIO or NIO2 Connector.
  • Add a new system property (org.apache.jasper.runtime.BodyContentImpl.BUFFER_SIZE) to control the size of the buffer used by Jasper when buffering tag bodies.

Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.

Download

2018-01-22 Tomcat 9.0.4 Released

The Apache Tomcat Project is proud to announce the release of version 9.0.4 of Apache Tomcat. This is the first stable release of the 9.0.x series. The notable changes compared to 9.0.2 include:

  • Modify the Default and WebDAV Servlets so that a 405 status code is returned for PUT and DELETE requests when disabled via the readonly initialisation parameter.
  • Add support for GZIP compression with HTTP/2
  • Expand the TLS functionality exposed via the Manager application
  • Return a simple, plain text error message if a client attempts to make a plain text HTTP connection to a TLS enabled NIO or NIO2 Connector.

Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.

Download