The description of the search algorithm used by the CGI Servlet to identify which script to execute was incorrect. As a result, some scripts may have failed to execute as expected and other scripts may have been executed unexpectedly. Note that it is only the documentation that was incorrect, the behaviour of the CGI servlet remains unchanged.
Apache Tomcat 9.0.0.M22 to 9.0.1
Apache Tomcat 8.5.16 to 8.5.23
Apache Tomcat 8.0.45 to 8.0.47
Apache Tomcat 7.0.79 to 7.0.82
Upstream indicates that the problematic documentation was introduced as part of the fix for the following upstream bug report:
Matching commit is:
Upstream commits correcting the documentation (for various supported branches):
As the relevant part of the documentation was only recently introduced upstream, it is not yet included in the Tomcat packages as shipped in Red Hat Enterprise Linux.
Created tomcat tracking bugs for this issue:
Affects: epel-6 [bug 1541082]
Affects: fedora-all [bug 1541081]