| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 001_update-tests-for-servlet3-api.patch | Updates the test to compile with the Servlet 3.0 API | Emmanuel Bourg <ebourg@apache.org> | not-needed | |||
| 002_portlet-api-compatibility.patch | Fixes the compatibility with the Portlet API 2.0 | Emmanuel Bourg <ebourg@apache.org> | no | |||
| 003_CVE-2023-24998.patch | CVE-2023-24998 Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads. |
Mark Thomas <markt@apache.org> | not-needed | debian | https://github.com/apache/commons-fileupload/commit/e20c04990f7420ca917e96a84cec58b13a1b3d17 |