4.5.32 (Dec 2009)
Security enhancement
When index.jsp outputs a request parameter, the parameter is sanitized rather than output directly.
New element output-stream-wrapper added in nexaweb-server.xml
This element controls synchronicity of client and server DOM processing. Default is asynchronous so that client does not wait for server DOM processing request to complete.
Two new controls added in nexaweb-client.xml
show-unknown-vm-status
It is now possible to display or hide the warning message about unrecognized or untested JVM when the application starts. The default is that the warning is shown.open-push-without-protocol
This option allows finer control of push connection which defaults to establishing push connection as a singleton request without other synch information being sent. For more information, see the comment about this control in nexaweb-client.xml.
Defects Resolved (Java)
10233 | memory leak related to processing a file that defines dataSource multiple times |
10259 | swing change: tabbing does not work for Sun Java Plug-in 1.3 |
10367 | security: index.jsp has cross site scripting issue |
10545 | when using IME to input a string longer than textField width, the character being converted may not be visible |
10547 | problem with display position for textField when IME input is longer than maxLength |
10568 | BIO-424100 cursor placed at wrong location for textArea with autoWrap set to true |
10629 | compatibility: compatibility issue regarding drawing processing of a window or dialog |
10635 | backslash in texArea throws exception |
10640 | pressing the arrow key in listBox or table without a selection item may cause NullPointerException |
10653 | feature request: adding option for not showing the warning for unrecognized JVM in version check by JVM detector |
10661 | feature request: adding option for ServerDOM synchronous timing |
10662 | multithread processing by XmlAbsorptionOutputStreamSplitter causes a ServerDOM synchronous issue |
10663 | backslash character in XPath query may cause an exception |
10672 | multiple session support using request headers |
10680 | cursor may display at the beginning of pasted text when pasting text into textArea |
10681 | cursor may disappear when left arrow key is pressed repeatedly in textField with IME input |
10682 | ServerProtocolException related to SimpleDateFormat |