Announcements from previous years can be found here:
Content
Older news
2024-09-16 Tomcat 11.0.0-M26 Released
The Apache Tomcat Project is proud to announce the release of version 11.0.0-M26 (beta) of Apache Tomcat. This release is a milestone release and is targeted at Jakarta EE 11.
Users of Tomcat 10 onwards should be aware that, as a result of the move from
Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
Foundation, the primary package for all implemented APIs has changed from
javax.*
to jakarta.*
. This will almost certainly
require code changes to enable applications to migrate from Tomcat 9 and earlier
to Tomcat 10 and later. A
migration
tool is available to aid this process.
The notable changes in this release are:
- Fix the regression in HTTP/2 support introduced in 11.0.0-M25
Full details of these changes, and all the other changes, are available in the Tomcat 11 (beta) changelog.
2024-09-17 Tomcat 10.1.30 Released
The Apache Tomcat Project is proud to announce the release of version 10.1.30 of Apache Tomcat. This release implements specifications that are part of the Jakarta EE 10 platform.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE based applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee
directory and
Tomcat will automatically convert them to Jakarta EE and copy them to the
webapps directory. This conversion is performed using the
Apache Tomcat
migration tool for Jakarta EE tool which is also available as a separate
download for off-line use.
The notable changes in this release are:
- Fix the regression in HTTP/2 support introduced in 10.1.29.
Full details of these changes, and all the other changes, are available in the Tomcat 10.1 changelog.
2024-09-17 Tomcat 9.0.95 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.95 of Apache Tomcat. This release implements specifications that are part of the Java EE 8 platform. The notable changes compared to 9.0.94 include:
- Fix the regression in HTTP/2 support introduced in 9.0.94
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2024-09-10 Tomcat 10.1.29 Released
The Apache Tomcat Project is proud to announce the release of version 10.1.29 of Apache Tomcat. This release implements specifications that are part of the Jakarta EE 10 platform.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE based applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee
directory and
Tomcat will automatically convert them to Jakarta EE and copy them to the
webapps directory. This conversion is performed using the
Apache Tomcat
migration tool for Jakarta EE tool which is also available as a separate
download for off-line use.
The notable changes in this release are:
- If an HTTP/2 client resets a stream before the request body is fully written, ensure that any ReadListener is notified via a call to ReadListener.onErrror().
- An Exception being thrown during WebSocket message processing (e.g. in a method annotated with @onMessage) should not automatically cause the connection to close. The application should handle the exception and make the decision whether or not to close the connection.
- Correct a regression in the fix for non-blocking reads of chunked
request bodies that caused
InputStream.available()
to return a non-zero value when there was no data to read. In some circumstances this could cause a blocking read to block waiting for more data rather than return the data it had already received.
Full details of these changes, and all the other changes, are available in the Tomcat 10.1 changelog.
2024-09-10 Tomcat 9.0.94 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.94 of Apache Tomcat. This release implements specifications that are part of the Java EE 8 platform. The notable changes compared to 9.0.93 include:
- If an HTTP/2 client resets a stream before the request body is fully written, ensure that any ReadListener is notified via a call to ReadListener.onErrror()
- An Exception being thrown during WebSocket message processing (e.g. in a method annotated with @onMessage) should not automatically cause the connection to close. The application should handle the exception and make the decision whether or not to close the connection.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2024-09-10 Tomcat 11.0.0-M25 Released
The Apache Tomcat Project is proud to announce the release of version 11.0.0-M25 (beta) of Apache Tomcat. This release is a milestone release and is targeted at Jakarta EE 11.
Users of Tomcat 10 onwards should be aware that, as a result of the move from
Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
Foundation, the primary package for all implemented APIs has changed from
javax.*
to jakarta.*
. This will almost certainly
require code changes to enable applications to migrate from Tomcat 9 and earlier
to Tomcat 10 and later. A
migration
tool is available to aid this process.
The notable changes in this release are:
- Implement the recent clarification from the Jakarta Servlet project that if a content length is declared then once that many bytes have been written to the response, further writes should trigger an IOException
- If an HTTP/2 client resets a stream before the request body is fully written, ensure that any ReadListener is notified via a call to ReadListener.onErrror()
- An Exception being thrown during WebSocket message processing (e.g. in a method annotated with @onMessage) should not automatically cause the connection to close. The application should handle the exception and make the decision whether or not to close the connection.
Full details of these changes, and all the other changes, are available in the Tomcat 11 (beta) changelog.
2024-08-06 Tomcat 10.1.28 Released
The Apache Tomcat Project is proud to announce the release of version 10.1.28 of Apache Tomcat. This release implements specifications that are part of the Jakarta EE 10 platform.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE based applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee
directory and
Tomcat will automatically convert them to Jakarta EE and copy them to the
webapps directory. This conversion is performed using the
Apache Tomcat
migration tool for Jakarta EE tool which is also available as a separate
download for off-line use.
The notable changes in this release are:
- Add support for RFC 8297 (Early Hints). Applications can use this feature by casting the HttpServletResponse to org.apache.catalina.connector.Reponse and then calling the method void sendEarlyHints()
- Align HTTP/2 with HTTP/1.1 and recycle the container internal request and response processing objects by default. This behaviour can be controlled via the new discardRequestsAndResponses attribute on the HTTP/2 upgrade protocol.
- Ensure statements returned from Statement methods executeQuery(), getResultSet() and getGeneratedKeys() are correctly wrapped before being returned to the caller.
Full details of these changes, and all the other changes, are available in the Tomcat 10.1 changelog.
2024-08-06 Tomcat 9.0.93 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.93 of Apache Tomcat. This release implements specifications that are part of the Java EE 8 platform. The notable changes compared to 9.0.91 include:
- Align HTTP/2 with HTTP/1.1 and recycle the container internal request and response processing objects by default. This behaviour can be controlled via the new discardRequestsAndResponses attribute on the HTTP/2 upgrade protocol.
- Add OpenSSL support for FFM. Using this feature requires Java 22 or newer.
- Add support for RFC 8297 (Early Hints). Applications can use this feature by casting the HttpServletResponse to org.apache.catalina.connector.Reponse and then calling the method void sendEarlyHints().
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2024-08-06 Tomcat 11.0.0-M24 Released
The Apache Tomcat Project is proud to announce the release of version 11.0.0-M24 (beta) of Apache Tomcat. This release is a milestone release and is targeted at Jakarta EE 11.
Users of Tomcat 10 onwards should be aware that, as a result of the move from
Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
Foundation, the primary package for all implemented APIs has changed from
javax.*
to jakarta.*
. This will almost certainly
require code changes to enable applications to migrate from Tomcat 9 and earlier
to Tomcat 10 and later. A
migration
tool is available to aid this process.
The notable changes in this release are:
- Align HTTP/2 with HTTP/1.1 and recycle the container internal request and response processing objects by default. This behaviour can be controlled via the new discardRequestsAndResponses attribute on the HTTP/2 upgrade protocol.
- Add FFM compatibility methods for LibreSSL and BoringSSL support.
- Add support for RFC 8297 (Early Hints). Applications can use this feature by casting the HttpServletResponse to org.apache.catalina.connector.Reponse and then calling the method void sendEarlyHints().
Full details of these changes, and all the other changes, are available in the Tomcat 11 (beta) changelog.
2024-07-12 Tomcat 10.1.26 Released
The Apache Tomcat Project is proud to announce the release of version 10.1.26 of Apache Tomcat. This release implements specifications that are part of the Jakarta EE 10 platform.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE based applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee
directory and
Tomcat will automatically convert them to Jakarta EE and copy them to the
webapps directory. This conversion is performed using the
Apache Tomcat
migration tool for Jakarta EE tool which is also available as a separate
download for off-line use.
The notable changes in this release are:
- Move OpenSSL support using FFM to a separate JAR named tomcat-coyote-ffm.jar that advertises Java 22 in its manifest.
- When using include directives in a tag file packaged in a JAR file, ensure that the include directives are processed correctly.
- Expand the implementation of the filter value of the Authenticator attribute allowCorsPreflight, so that it applies to all requests that match the configured URL patterns for the CORS filter, rather than only applying if the CORS filter is mapped to /*
Full details of these changes, and all the other changes, are available in the Tomcat 10.1 changelog.
2024-07-08 Tomcat 9.0.91 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.90 of Apache Tomcat. This release implements specifications that are part of the Java EE 8 platform. The notable changes compared to 9.0.89 include:
- When using include directives in a tag file packaged in a JAR file, ensure that the include directives are processed correctly.
- Expand the implementation of the filter value of the Authenticator attribute allowCorsPreflight, so that it applies to all requests that match the configured URL patterns for the CORS filter, rather than only applying if the CORS filter is mapped to /*
- Add test-only build target to allow running only the testsuite, supporting Java versions down to the minimum supported to run Tomcat.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2024-07-05 Tomcat 11.0.0-M22 Released
The Apache Tomcat Project is proud to announce the release of version 11.0.0-M22 (beta) of Apache Tomcat. This release is a milestone release and is targeted at Jakarta EE 11.
Users of Tomcat 10 onwards should be aware that, as a result of the move from
Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
Foundation, the primary package for all implemented APIs has changed from
javax.*
to jakarta.*
. This will almost certainly
require code changes to enable applications to migrate from Tomcat 9 and earlier
to Tomcat 10 and later. A
migration
tool is available to aid this process.
The notable changes in this release are:
- Move OpenSSL support using FFM to a separate JAR named tomcat-coyote-ffm.jar that advertises Java 22 in its manifest.
- When using include directives in a tag file packaged in a JAR file, ensure that the include directives are processed correctly.
- Expand the implementation of the filter value of the Authenticator attribute allowCorsPreflight, so that it applies to all requests that match the configured URL patterns for the CORS filter, rather than only applying if the CORS filter is mapped to /*
Full details of these changes, and all the other changes, are available in the Tomcat 11 (beta) changelog.
2024-06-19 Tomcat 10.1.25 Released
The Apache Tomcat Project is proud to announce the release of version 10.1.25 of Apache Tomcat. This release implements specifications that are part of the Jakarta EE 10 platform.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE based applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee
directory and
Tomcat will automatically convert them to Jakarta EE and copy them to the
webapps directory. This conversion is performed using the
Apache Tomcat
migration tool for Jakarta EE tool which is also available as a separate
download for off-line use.
The notable changes in this release are:
- Ensure that static resources deployed via a JAR file remain accessible when the context is configured to use a bloom filter. Based on pull request #730 provided by bergander.
- Update to Commons Daemon 1.4.0
- Improvements to HTTP/2 streams and timeouts
Full details of these changes, and all the other changes, are available in the Tomcat 10.1 changelog.
2024-06-19 Tomcat 9.0.90 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.90 of Apache Tomcat. This release implements specifications that are part of the Java EE 8 platform. The notable changes compared to 9.0.89 include:
- Ensure that static resources deployed via a JAR file remain accessible when the context is configured to use a bloom filter.
- Update to Commons Daemon 1.4.0.
- The default value of the discardFacades attribute of the Connector is now true for improved safety.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2024-06-18 Tomcat 11.0.0-M21 Released
The Apache Tomcat Project is proud to announce the release of version 11.0.0-M21 (beta) of Apache Tomcat. This release is a milestone release and is targeted at Jakarta EE 11.
Users of Tomcat 10 onwards should be aware that, as a result of the move from
Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
Foundation, the primary package for all implemented APIs has changed from
javax.*
to jakarta.*
. This will almost certainly
require code changes to enable applications to migrate from Tomcat 9 and earlier
to Tomcat 10 and later. A
migration
tool is available to aid this process.
The notable changes in this release are:
- Ensure that static resources deployed via a JAR file remain accessible when the context is configured to use a bloom filter. Based on a pull request provided by bergander.
- Add task queue size configuration on the Connector element, similar to the Executor element, for consistency.
- Update to Commons Daemon 1.4.0
Full details of these changes, and all the other changes, are available in the Tomcat 11 (beta) changelog.
2024-05-13 Tomcat 10.1.24 Released
The Apache Tomcat Project is proud to announce the release of version 10.1.24 of Apache Tomcat. This release implements specifications that are part of the Jakarta EE 10 platform.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE based applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee
directory and
Tomcat will automatically convert them to Jakarta EE and copy them to the
webapps directory. This conversion is performed using the
Apache Tomcat
migration tool for Jakarta EE tool which is also available as a separate
download for off-line use.
The notable changes in this release are:
- Correct error handling for asynchronous requests
- Refactor HTTP header parsing to use common parsing code and fix non-blocking reads of chunked request bodies including trailer fields
- WebDAV locking handling fixes
Full details of these changes, and all the other changes, are available in the Tomcat 10.1 changelog.
2024-05-07 Tomcat 9.0.89 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.89 of Apache Tomcat. This release implements specifications that are part of the Java EE 8 platform. The notable changes compared to 9.0.88 include:
- Refactor HTTP header parsing to use common parsing code and fix non-blocking reads of chunked request bodies including trailer fields.
- Add more timescale options to AccessLogValve and ExtendedAccessLogValve.
- WebDAV locking handling fixes.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2024-05-08 Tomcat 11.0.0-M20 Released
The Apache Tomcat Project is proud to announce the release of version 11.0.0-M20 (alpha) of Apache Tomcat. This release is a milestone release and is targeted at Jakarta EE 11.
Users of Tomcat 10 onwards should be aware that, as a result of the move from
Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
Foundation, the primary package for all implemented APIs has changed from
javax.*
to jakarta.*
. This will almost certainly
require code changes to enable applications to migrate from Tomcat 9 and earlier
to Tomcat 10 and later. A
migration
tool is available to aid this process.
The notable changes in this release are:
- Add OpenSSL FFM classes to tomcat-embed-core.jar
- Refactor HTTP header parsing to use common parsing code and fix non-blocking reads of chunked request bodies including trailer fields
- Add more timescale options to AccessLogValve and ExtendedAccessLogValve
Full details of these changes, and all the other changes, are available in the Tomcat 11 (alpha) changelog.
2024-04-23 Tomcat 10.1.23 Released
The Apache Tomcat Project is proud to announce the release of version 10.1.23 of Apache Tomcat. This release implements specifications that are part of the Jakarta EE 10 platform.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE based applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee
directory and
Tomcat will automatically convert them to Jakarta EE and copy them to the
webapps directory. This conversion is performed using the
Apache Tomcat
migration tool for Jakarta EE tool which is also available as a separate
download for off-line use.
The notable changes in this release are:
- Improve locking strategies in Catalina core
- Update Basic authentication to implement the requirements of RFC 7617
- Updates to Apache Commons dependencies
- Add OpenSSL support when FFM is available
Full details of these changes, and all the other changes, are available in the Tomcat 10.1 changelog.
2024-04-16 Tomcat 11.0.0-M19 Released
The Apache Tomcat Project is proud to announce the release of version 11.0.0-M19 (alpha) of Apache Tomcat. This release is a milestone release and is targeted at Jakarta EE 11.
Users of Tomcat 10 onwards should be aware that, as a result of the move from
Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
Foundation, the primary package for all implemented APIs has changed from
javax.*
to jakarta.*
. This will almost certainly
require code changes to enable applications to migrate from Tomcat 9 and earlier
to Tomcat 10 and later. A
migration
tool is available to aid this process.
The notable changes in this release are:
- Finalize update to the Jakarta EE 11 specifications.
- Cookies header generation enhancements.
- Fix regression when reloading TLS configuration and files.
Full details of these changes, and all the other changes, are available in the Tomcat 11 (alpha) changelog.
2024-04-16 Tomcat 9.0.88 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.88 of Apache Tomcat. This release implements specifications that are part of the Java EE 8 platform. The notable changes compared to 9.0.87 include:
- Cookies header generation enhancements.
- Fix regression when reloading TLS configuration and files.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2024-03-25 Tomcat 10.1.20 Released
The Apache Tomcat Project is proud to announce the release of version 10.1.20 of Apache Tomcat. This release implements specifications that are part of the Jakarta EE 10 platform.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE based applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee
directory and
Tomcat will automatically convert them to Jakarta EE and copy them to the
webapps directory. This conversion is performed using the
Apache Tomcat
migration tool for Jakarta EE tool which is also available as a separate
download for off-line use.
The notable changes in this release are:
- Fix regression when reloading TLS configuration and files.
- When restoring a saved POST request after a successful FORM authentication, ensure that neither the URI, the query string no the protocol are corrupted when restoring the request body.
- Align error handling for Writer and OutputStream. Ensure use of either once the response has been recycled triggers a NullPointerException provided that discardFacades is configured with the default value of true.
Full details of these changes, and all the other changes, are available in the Tomcat 10.1 changelog.
2024-03-14 Tomcat 9.0.87 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.87 of Apache Tomcat. This release implements specifications that are part of the Java EE 8 platform. The notable changes compared to 9.0.86 include:
- When restoring a saved POST request after a successful FORM authentication, ensure that neither the URI, the query string nor the protocol are corrupted when restoring the request body.
- Align error handling for Writer and OutputStream. Ensure use of either once the response has been recycled triggers a NullPointerException provided that discardFacades is configured with the default value of true.
- The standard thread pool implementations that are configured using the Executor element now implement ExecutorService for better support of NIO2 or others.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2024-03-14 Tomcat 11.0.0-M18 Released
The Apache Tomcat Project is proud to announce the release of version 11.0.0-M18 (alpha) of Apache Tomcat. This release is a milestone release and is targeted at Jakarta EE 11.
Users of Tomcat 10 onwards should be aware that, as a result of the move from
Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
Foundation, the primary package for all implemented APIs has changed from
javax.*
to jakarta.*
. This will almost certainly
require code changes to enable applications to migrate from Tomcat 9 and earlier
to Tomcat 10 and later. A
migration
tool is available to aid this process.
The notable changes in this release are:
- Reduce minimum Java version to Java 17
- When restoring a saved POST request after a successful FORM authentication, ensure that neither the URI, the query string no the protocol are corrupted when restoring the request body.
- Align error handling for Writer and OutputStream. Ensure use of either once the response has been recycled triggers a NullPointerException provided that discardFacades is configured with the default value of true.
Full details of these changes, and all the other changes, are available in the Tomcat 11 (alpha) changelog.
2024-02-19 Tomcat 10.1.19 Released
The Apache Tomcat Project is proud to announce the release of version 10.1.19 of Apache Tomcat. This release implements specifications that are part of the Jakarta EE 10 platform.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE based applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee
directory and
Tomcat will automatically convert them to Jakarta EE and copy them to the
webapps directory. This conversion is performed using the
Apache Tomcat
migration tool for Jakarta EE tool which is also available as a separate
download for off-line use.
The notable changes in this release are:
- Add improvements to the CSRF prevention filter including the ability to skip adding nonces for resource name and subtree URL patterns.
- Add support for user provided SSLContext instances configured on SSLHostConfigCertificate instances. Based on pull request #673 provided by Hakan Altındağ.
- Review usage of debug logging and downgrade trace or data dumping operations from debug level to trace.
Full details of these changes, and all the other changes, are available in the Tomcat 10.1 changelog.
2024-02-19 Tomcat 8.5.99 Released
The Apache Tomcat Project is proud to announce the release of version 8.5.99 of Apache Tomcat. This release implements specifications that are part of the Java EE 7 platform. The notable changes compared to 8.5.98 include:
- Add improvements to the CSRF prevention filter including the ability to skip adding nonces for resource name and subtree URL patterns.
- Add support for user provided SSLContext instances configured on SSLHostConfigCertificate instances. Based on pull request #673 provided by Hakan Altındağ.
- Review usage of debug logging and downgrade trace or data dumping operations from debug level to trace.
Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.
Please note that Apache Tomcat 8.5.x will reach End-of-life (EOL) on 31 March 2024.
2024-02-19 Tomcat 9.0.86 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.86 of Apache Tomcat. This release implements specifications that are part of the Java EE 8 platform. The notable changes compared to 9.0.85 include:
- Add improvements to the CSRF prevention filter including the ability to skip adding nonces for resource name and subtree URL patterns.
- Add support for user provided SSLContext instances configured on SSLHostConfigCertificate instances. Based on pull request #673 provided by Hakan Altındağ.
- Review usage of debug logging and downgrade trace or data dumping operations from debug level to trace.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2024-02-19 Tomcat 11.0.0-M17 Released
The Apache Tomcat Project is proud to announce the release of version 11.0.0-M17 (alpha) of Apache Tomcat. This release is a milestone release and is targeted at Jakarta EE 11.
Users of Tomcat 10 onwards should be aware that, as a result of the move from
Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
Foundation, the primary package for all implemented APIs has changed from
javax.*
to jakarta.*
. This will almost certainly
require code changes to enable applications to migrate from Tomcat 9 and earlier
to Tomcat 10 and later. A
migration
tool is available to aid this process.
The notable changes in this release are:
- Add improvements to the CSRF prevention filter including the ability to skip adding nonces for resource name and subtree URL patterns.
- Add support for user provided SSLContext instances configured on SSLHostConfigCertificate instances. Based on pull request #673 provided by Hakan Altındağ.
- Review usage of debug logging and downgrade trace or data dumping operations from debug level to trace.
Full details of these changes, and all the other changes, are available in the Tomcat 11 (alpha) changelog.
2024-02-12 Tomcat Native 1.3.0 Released
The Apache Tomcat Project is proud to announce the release of version 1.3.0 of Tomcat Native. This is the first release of the 1.3.x branch. The notable changes compared to 1.2.x include:
- The minimum supported OpenSSL version is 1.1.1
- The minimum supported APR version in 1.6.3
- The windows binaries in this release have been built with OpenSSL 3.0.13
2024-02-08 Tomcat Native 2.0.7 Released
The Apache Tomcat Project is proud to announce the release of version 2.0.7 of Tomcat Native. The notable changes compared to 2.0.6 include:
- Align default pass phrase prompt with httpd on Windows
- The windows binaries in this release have been built with OpenSSL 3.0.13
2024-01-09 Tomcat 8.5.98 Released
The Apache Tomcat Project is proud to announce the release of version 8.5.98 of Apache Tomcat. This release implements specifications that are part of the Java EE 7 platform. The notable changes compared to 8.5.97 include:
- Fix virtual thread support for the NIO2 connector.
- Correct a regression in the fix for 67675 that broke TLS key file parsing for PKCS#8 format keys that do not specify an explicit pseudo-random function and rely on the default. This typically affects keys generated by OpenSSL 1.0.2.
- Allow multiple operations with the same name on introspected mbeans, fixing a regression caused by the introduction of a second addSslHostConfig() method.
Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.
Please note that Apache Tomcat 8.5.x will reach End-of-life (EOL) on 31 March 2024.
2024-01-09 Tomcat 10.1.18 Released
The Apache Tomcat Project is proud to announce the release of version 10.1.18 of Apache Tomcat. This release implements specifications that are part of the Jakarta EE 10 platform.
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE based applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee
directory and
Tomcat will automatically convert them to Jakarta EE and copy them to the
webapps directory. This conversion is performed using the
Apache Tomcat
migration tool for Jakarta EE tool which is also available as a separate
download for off-line use.
The notable changes in this release are:
- Fix virtual thread support for the NIO2 connector.
- Correct a regression in the fix for 67675 that broke TLS key file parsing for PKCS#8 format keys that do not specify an explicit pseudo-random function and rely on the default. This typically affects keys generated by OpenSSL 1.0.2.
- Allow multiple operations with the same name on introspected mbeans, fixing a regression caused by the introduction of a second addSslHostConfig() method.
Full details of these changes, and all the other changes, are available in the Tomcat 10.1 changelog.
2024-01-09 Tomcat 9.0.85 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.85 of Apache Tomcat. This release implements specifications that are part of the Java EE 8 platform. The notable changes compared to 9.0.84 include:
- Fix virtual thread support for the NIO2 connector.
- Correct a regression in the fix for 67675 that broke TLS key file parsing for PKCS#8 format keys that do not specify an explicit pseudo-random function and rely on the default. This typically affects keys generated by OpenSSL 1.0.2.
- Allow multiple operations with the same name on introspected mbeans, fixing a regression caused by the introduction of a second addSslHostConfig() method.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2024-01-09 Tomcat 11.0.0-M16 Released
The Apache Tomcat Project is proud to announce the release of version 11.0.0-M16 (alpha) of Apache Tomcat. This release is a milestone release and is targeted at Jakarta EE 11.
Users of Tomcat 10 onwards should be aware that, as a result of the move from
Java EE to Jakarta EE as part of the transfer of Java EE to the Eclipse
Foundation, the primary package for all implemented APIs has changed from
javax.*
to jakarta.*
. This will almost certainly
require code changes to enable applications to migrate from Tomcat 9 and earlier
to Tomcat 10 and later. A
migration
tool is available to aid this process.
The notable changes in this release are:
- Fix virtual thread support for the NIO2 connector
- Correct a regression in the fix for 67675 that broke TLS key file parsing for PKCS#8 format keys that do not specify an explicit pseudo-random function and rely on the default. This typically affects keys generated by OpenSSL 1.0.2.
- Allow multiple operations with the same name on introspected mbeans, fixing a regression caused by the introduction of a second addSslHostConfig() method.
Full details of these changes, and all the other changes, are available in the Tomcat 11 (alpha) changelog.