Announcements from previous years can be found here:
Content
Older news
2018-04-13 Tomcat 7.0.86 Released
The Apache Tomcat Project is proud to announce the release of version 7.0.86 of Apache Tomcat. This release contains a number of bug fixes and improvements compared to version 7.0.85. The notable changes compared to 7.0.85 include:
- Add support for the maxDays attribute to the
AccessLogValveandExtendedAccessLogValve. This allows the maximum number of days for which rotated access logs should be retained before deletion to be defined. - Avoid infinite recursion, when trying to validate a session while loading it with PersistentManager.
Full details of these changes, and all the other changes, are available in the Tomcat 7 changelog.
Warning: There is a regression in handling of DataSource resources that do not specify a factory. A simple configuration workaround is available. See bug 62316. This will be fixed in 7.0.87.
2018-04-13 Tomcat 8.0.51 Released
The Apache Tomcat Project is proud to announce the release of version 8.0.51 of Apache Tomcat. Apache Tomcat 8.0.51 includes fixes for issues identified in 8.0.50 as well as other enhancements and changes. The notable changes compared to 8.0.50 include:
- Avoid infinite recursion, when trying to validate a session while loading it with PersistentManager.
Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.
Note: End of life date for Apache Tomcat 8.0.x is announced. Read more...
2018-04-07 Tomcat 9.0.7 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.7 of Apache Tomcat. The notable changes compared to 9.0.6 include:
- Add support for the maxDays attribute to the
AccessLogValveandExtendedAccessLogValve. This allows the maximum number of days for which rotated access logs should be retained before deletion to be defined. - Avoid infinite recursion, when trying to validate a session while loading it with PersistentManager.
- Correct two protocol errors with HTTP/2 PUSH_PROMISE frames.
- The OpenSSL engine SSL session will now ignore invalid accesses.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2018-04-07 Tomcat 8.5.30 Released
The Apache Tomcat Project is proud to announce the release of version 8.5.30 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.29 include:
- Add support for the maxDays attribute to the
AccessLogValveandExtendedAccessLogValve. This allows the maximum number of days for which rotated access logs should be retained before deletion to be defined. - Avoid infinite recursion, when trying to validate a session while loading it with PersistentManager.
- Correct two protocol errors with HTTP/2 PUSH_PROMISE frames.
- The OpenSSL engine SSL session will now ignore invalid accesses.
Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.
2018-03-08 Tomcat 9.0.6 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.6 of Apache Tomcat. The notable changes compared to 9.0.5 include:
- TLS stability improvements.
- Add the ability to specify static HTML responses for specific error codes and/or exception types with the ErrorReportValve.
- Add an async HTTP/2 parser for NIO2.
- Add documentation for the Host Manager web application. Patch provided by Marek Czernek.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2018-03-08 Tomcat 8.5.29 Released
The Apache Tomcat Project is proud to announce the release of version 8.5.29 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.28 include:
- TLS stability improvements.
- Correct a regression in the fix for 60276 that meant compression was applied to all MIME types. Patch provided by Stefan Knoblich.
- Add documentation for the Host Manager web application. Patch provided by Marek Czernek.
Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.
2018-02-13 Tomcat 7.0.85 Released
The Apache Tomcat Project is proud to announce the release of version 7.0.85 of Apache Tomcat. This release contains a number of bug fixes and improvements compared to version 7.0.84.
Full details of these changes, and all the other changes, are available in the Tomcat 7 changelog.
2018-02-13 Tomcat 8.0.50 Released
The Apache Tomcat Project is proud to announce the release of version 8.0.50 of Apache Tomcat. Apache Tomcat 8.0.50 includes fixes for issues identified in 8.0.49 as well as other enhancements and changes.
Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.
Note: End of life date for Apache Tomcat 8.0.x is announced. Read more...
2018-02-11 Tomcat 9.0.5 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.5 of Apache Tomcat. The notable changes compared to 9.0.4 include:
- Refactor error handling to enable errors that occur before processing is passed to the application to be handled by the application provided error handling and/or the container provided error handling (ErrorReportValve) as appropriate.
- Enable strict validation of the provided host name and port for all connectors. Requests with invalid host names and/or ports will be rejected with a 400 response.
- Enhance the JMX support for jdbc-pool in order to expose PooledConnection and JdbcInterceptors.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.
2018-02-11 Tomcat 8.5.28 Released
The Apache Tomcat Project is proud to announce the release of version 8.5.28 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.27 include:
- Fix truncated request input streams when using NIO2 with TLS.
- Improved error handling and reporting for TLS configuration.
- Enhance the JMX support for jdbc-pool in order to expose PooledConnection and JdbcInterceptors.
Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.
2018-01-24 Tomcat 7.0.84 Released
The Apache Tomcat Project is proud to announce the release of version 7.0.84 of Apache Tomcat. This release contains a number of bug fixes and improvements compared to version 7.0.82. The notable changes compared to 7.0.82 include:
- Java 9 is fully supported
- Updated the packaged version of the Tomcat Native Library to 1.2.16 to pick up the latest Windows binaries built with APR 1.6.3 and OpenSSL 1.0.2m
- Add a new system property (org.apache.jasper.runtime.BodyContentImpl.BUFFER_SIZE) to control the size of the buffer used by Jasper when buffering tag bodies.
Full details of these changes, and all the other changes, are available in the Tomcat 7 changelog.
2018-01-24 Tomcat 8.0.49 Released
The Apache Tomcat Project is proud to announce the release of version 8.0.49 of Apache Tomcat. Apache Tomcat 8.0.49 includes fixes for issues identified in 8.0.48 as well as other enhancements and changes. The notable changes compared to 8.0.48 include:
- Add a new system property (org.apache.jasper.runtime.BodyContentImpl.BUFFER_SIZE) to control the size of the buffer used by Jasper when buffering tag bodies.
Full details of these changes, and all the other changes, are available in the Tomcat 8 changelog.
Note: End of life date for Apache Tomcat 8.0.x is announced. Read more...
2018-01-22 Tomcat 8.5.27 Released
The Apache Tomcat Project is proud to announce the release of version 8.5.27 of Apache Tomcat. Apache Tomcat 8.5.x is intended to replace 8.0.x and includes new features pulled forward from Tomcat 9.0.x. The minimum Java version and implemented specification versions remain unchanged. The notable changes compared to 8.5.24 include:
- Add support for GZIP compression with HTTP/2
- Expand the TLS functionality exposed via the Manager application
- Return a simple, plain text error message if a client attempts to make a plain text HTTP connection to a TLS enabled NIO or NIO2 Connector.
- Add a new system property (org.apache.jasper.runtime.BodyContentImpl.BUFFER_SIZE) to control the size of the buffer used by Jasper when buffering tag bodies.
Full details of these changes, and all the other changes, are available in the Tomcat 8.5 changelog.
2018-01-22 Tomcat 9.0.4 Released
The Apache Tomcat Project is proud to announce the release of version 9.0.4 of Apache Tomcat. This is the first stable release of the 9.0.x series. The notable changes compared to 9.0.2 include:
- Modify the Default and WebDAV Servlets so that a 405 status code is returned for PUT and DELETE requests when disabled via the readonly initialisation parameter.
- Add support for GZIP compression with HTTP/2
- Expand the TLS functionality exposed via the Manager application
- Return a simple, plain text error message if a client attempts to make a plain text HTTP connection to a TLS enabled NIO or NIO2 Connector.
Full details of these changes, and all the other changes, are available in the Tomcat 9 changelog.