Content

Older news

Announcements from previous years can be found here:

2016-07-12 Tomcat 8.5.4 Released

The Apache Tomcat Project is proud to announce the release of version 8.5.4 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.3 include:

  • Correct a regression in the embedded packaging
  • Add the ability to control the degree of concurrency when processing HTTP/2 connections
  • Update to Tomcat Native 1.2.8

Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.

Download

2016-07-12 Tomcat 9.0.0.M9 (alpha) Released

The Apache Tomcat Project is proud to announce the release of version 9.0.0.M9 (alpha) of Apache Tomcat. The is a milestone release of the 9.0.x branch and has been made to provide users with early access to the new features in Apache Tomcat 9.0.x so that they may provide feedback. The notable changes compared to 9.0.0.M8 include:

  • Fix the embedded packaging
  • Make it easier to inject custom keystores (for embedded users)
  • Update tc-native to 1.2.8
  • Add support for wildcard host names and aliases

Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.

Download

2016-06-20 Tomcat 7.0.70 Released

The Apache Tomcat Project is proud to announce the release of version 7.0.70 of Apache Tomcat. This release contains a number of bug fixes and improvements compared to version 7.0.69. The notable changes since 7.0.69 include:

  • Update the packaged version of the Tomcat Native Library to 1.2.7 to pick up the Windows binaries that are based on OpenSSL 1.0.2h and APR 1.5.2.
  • Remove native code (Windows Service Wrapper, APR/native connector) support for Windows Itanium.

Full details of these changes, and all the other changes, are available in the Tomcat 7 changelog.

Download | ChangeLog for 7.0.70

2016-06-13 Tomcat 9.0.0.M8 (alpha) Released

The Apache Tomcat Project is proud to announce the release of version 9.0.0.M8 (alpha) of Apache Tomcat. The is a milestone release of the 9.0.x branch and has been made to provide users with early access to the new features in Apache Tomcat 9.0.x so that they may provide feedback. The notable changes compared to 9.0.0.M6 include:

  • Improvements to memory leak detection and prevention including the change RMI memory leaks are now correctly treated as application bugs rather than a JRE bug.
  • Fix a couple of memory leaks found in Tomcat.
  • The HTTP Server header is no longer set by default.

Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.

Download

2016-06-13 Tomcat 8.5.3 Released

The Apache Tomcat Project is proud to announce the release of version 8.5.3 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.2 include:

  • Ensure error will not be thrown during deployment when scanning jar files with no or invalid MANIFEST.MF files.
  • Improvements to memory leak detection and prevention.
  • The HTTP Server header is no longer set by default.

Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.

Download

2016-06-13 Tomcat 8.0.36 Released

The Apache Tomcat Project is proud to announce the release of version 8.0.36 of Apache Tomcat. Apache Tomcat 8.0.36 includes fixes for issues identified in 8.0.35 as well as other enhancements and changes. The notable changes since 8.0.35 include:

  • Ensure an error will not be thrown during deployment when scanning jar files with no or invalid MANIFEST.MF files.
  • Improvements to memory leak detection and prevention.

Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.

Download

2016-05-16 Tomcat 8.0.35 Released

The Apache Tomcat Project is proud to announce the release of version 8.0.35 of Apache Tomcat. Apache Tomcat 8.0.35 includes fixes for issues identified in 8.0.33 as well as other enhancements and changes. The notable changes since 8.0.33 include:

  • Making the default TLS configuration more secure.
  • Update the packaged version of the Tomcat Native Library to 1.2.7 to pick up the Windows binaries that are based on OpenSSL 1.0.2h and APR 1.5.2.

Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.

Download

2016-05-16 Tomcat 8.5.2 (beta) Released

The Apache Tomcat Project is proud to announce the release of version 8.5.2 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.0 include:

  • Add the org.apache.catalina.servlet4preview package that can be used to gain early access to Servlet 4.0 features. Note that this package will not be present in Tomcat 9.
  • Make default TLS configuration more secure
  • Add direct HTTP/2 connection support
  • Update the packaged version of the Tomcat Native Library to 1.2.7 to pick up the Windows binaries that are based on OpenSSL 1.0.2h and APR 1.5.2.

Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.

Download

2016-05-16 Tomcat 9.0.0.M6 (alpha) Released

The Apache Tomcat Project is proud to announce the release of version 9.0.0.M6 (alpha) of Apache Tomcat. The is a milestone release of the 9.0.x branch and has been made to provide users with early access to the new features in Apache Tomcat 9.0.x so that they may provide feedback. The notable changes compared to 9.0.0.M4 include:

  • Add direct HTTP/2 connection support
  • Update the implementation of the the proposed Servlet 4.0 API to provide mapping type information for the current request to reflect discussions within the EG.
  • Update the packaged version of the Tomcat Native Library to 1.2.7 to pick up the Windows binaries that are based on OpenSSL 1.0.2h and APR 1.5.2.
  • Improve default configuration for TLS connectors.

Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.

Download

2016-05-08 Tomcat Native 1.2.7 Released

The Apache Tomcat Project is proud to announce the release of version 1.2.7 of Tomcat Native. The notable changes since 1.2.6 include:

  • Windows binaries built with APR 1.5.2 and OpenSSL 1.0.2h.

Note that, unless a regression is discovered in 1.2.x, users should now be using 1.2.x in preference to 1.1.x.

Download | ChangeLog for 1.2.7

2016-04-26 Tomcat Native 1.2.6 Released

The Apache Tomcat Project is proud to announce the release of version 1.2.6 of Tomcat Native. The notable changes since 1.2.5 include:

  • Continued work to track changes in OpenSSL 1.1.0 development.
  • Add support for using Java keystores for certificate chains.
  • Windows binaries built with APR 1.5.2 and OpenSSL 1.0.2g.

Note that, unless a regression is discovered in 1.2.x, users should now be using 1.2.x in preference to 1.1.x.

Download | ChangeLog for 1.2.6

2016-04-15 Tomcat 7.0.69 Released

The Apache Tomcat Project is proud to announce the release of version 7.0.69 of Apache Tomcat. This release contains a number of bug fixes and improvements compared to version 7.0.68. The notable changes since 7.0.68 include:

  • Correct a false positive warning for ThreadLocal related memory leaks when the key class but not the value class has been loaded by the web application class loader.

Full details of these changes, and all the other changes, are available in the Tomcat 7 changelog.

Download | ChangeLog for 7.0.69

2016-03-24 Tomcat 8.0.33 Released

The Apache Tomcat Project is proud to announce the release of version 8.0.33 of Apache Tomcat. Apache Tomcat 8.0.33 includes fixes for issues identified in 8.0.32 as well as other enhancements and changes. The notable changes since 8.0.32 include:

  • Correct a false positive warning for ThreadLocal related memory leaks when the key class but not the value class has been loaded by the web application class loader.
  • Improve the performance of javax.servlet.jsp.el.ScopedAttributeELResolver when resolving attributes that do not exist.
  • Update the packaged version of the Tomcat Native Library to 1.2.5 to pick up the Windows binaries that are based on OpenSSL 1.0.2g and APR 1.5.1.

Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.

Download

2016-03-24 Tomcat 8.5.0 (beta) Released

The Apache Tomcat Project is proud to announce the release of version 8.5.0 of Apache Tomcat. Apache Tomcat 8.5.0 is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.0.x include:

  • Added support for HTTP/2, and TLS virtual hosting
  • Added support for JASPIC 1.1
  • The BIO connectors, support for Windows Itanium and support for Comet have been removed

Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.

Download

2016-03-16 Tomcat 9.0.0.M4 (alpha) Released

The Apache Tomcat Project is proud to announce the release of version 9.0.0.M4 (alpha) of Apache Tomcat. The is a milestone release of the 9.0.x branch and has been made to provide users with early access to the new features in Apache Tomcat 9.0.x so that they may provide feedback. The notable changes compared to 9.0.0.M3 include:

  • Added JASPIC support
  • Switch to the ParallelWebappClassLoader by default
  • Reduce runtime memory footprint

Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.

Download

2016-03-07 Tomcat Native 1.2.5 Released

The Apache Tomcat Project is proud to announce the release of version 1.2.5 of Tomcat Native. The notable changes since 1.2.4 include:

  • Report OpenSSL runtime version in use rather than compile time version used.
  • Windows binaries built with APR 1.5.1 and OpenSSL 1.0.2g.

Note that, unless a regression is discovered in 1.2.x, users should now be using 1.2.x in preference to 1.1.x.

Download | ChangeLog for 1.2.5

2016-02-16 Tomcat 7.0.68 Released

The Apache Tomcat Project is proud to announce the release of version 7.0.68 of Apache Tomcat. This release contains a number of security and bug fixes and improvements compared to version 7.0.67. The notable changes since 7.0.67 include:

  • Restore the default for mapperContextRootRedirectEnabled to true
  • Expand session attribute filtering on load/unload to all managers

Full details of these changes, and all the other changes, are available in the Tomcat 7 changelog.

Download | ChangeLog for 7.0.68

2016-02-08 Tomcat 8.0.32 Released

The Apache Tomcat Project is proud to announce the release of version 8.0.32 of Apache Tomcat. Apache Tomcat 8.0.32 includes fixes for issues identified in 8.0.30 as well as other enhancements and changes. The notable changes since 8.0.30 include:

  • Restore the default for mapperContextRootRedirectEnabled to true
  • Update the packaged version of the Tomcat Native Library to 1.2.4 to pick up the Windows binaries that are based on OpenSSL 1.0.2e
  • Expand session attribute filtering on load/unload to all managers

Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.

Download

2016-02-05 Tomcat 9.0.0.M3 (alpha) Released

The Apache Tomcat Project is proud to announce the release of version 9.0.0.M3 (alpha) of Apache Tomcat. The is a milestone release of the 9.0.x branch and has been made to provide users with early access to the new features in Apache Tomcat 9.0.x so that they may provide feedback. The notable changes compared to 9.0.0.M1 include:

  • Added the ability to use OpenSSL with JSSE style TLS configuration
  • Added support for relative HTTP redirects
  • Added the ability to access the CredentialHandler via the ServletContext

Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.

Download

2016-01-11 Tomcat Native 1.2.4 Released

The Apache Tomcat Project is proud to announce the release of version 1.2.4 of Tomcat Native. The notable changes since 1.2.3 include:

  • Renegotiation improvements.

Note that, unless a regression is discovered in 1.2.x, users should now be using 1.2.x in preference to 1.1.x.

Download | ChangeLog for 1.2.4