PQ85432; 5.0.x, 5.1.0.3: HTTP connection is not closed in event of an IO excepti
 Downloadable files
 
Abstract
It is possible for data to be left in the socket receive buffer from one request, then incorrectly read by another request.
 
Download Description
PQ85432 resolves the following problem

If a Web server or plug-in is used as the front end to IBM® WebSphere® Application Server, and the HTTP Transport is configured to reuse the connections between the plug-in and HTTP Transport with KeepAlive enabled, then it is normal for WebSphere Application Server to receive requests from multiple clients through the same socket.

When one client times out while sending data, perhaps during a a POST request, it is possible for data from a previous request to be left in the socket receive buffer. If the socket is configured for keep alive and used for a subsequent request, the data left from the first request will be read and processed for the next request.

Usually this will lead to a "501" error because the POST data does not match a valid request method.

Depending on how this error is handled by the servlet, the old data can be sent back to the new client as part of the error message.

Installing PQ85432 will cause the socket to be closed if there is an IO error during the handling of the request.

Supersedes for release 5.0.1: PQ74488
 
Prerequisites
PQ81764 - for 5.0.x releases
 
URL LANGUAGE SIZE(Bytes)
UpdateInstaller for V5.1 US English 7000000
UpdateInstaller for V5.0 US English 7000000
 
 
Installation Instructions
Please review the readme.txt for detailed installation instructions.
 
URL LANGUAGE SIZE(Bytes)
Readme US English 2942
 
Technical support
1-800-IBM-SERV (U.S. Only)
 
Cross Reference information
Segment Product Component Platform Version Edition
Application Servers Runtimes for Java Technology Java SDK
Problems (APARS) fixed
PQ85432, PQ81764, PQ75239, PQ80244, PQ74488
 
 


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > HTTP Transport
Operating system(s): Windows
Software version: 5.1.0.3
Software edition:
Reference #: 4006791
IBM Group: Software Group
Modified date: Aug 17, 2004