6898371 

Severe TLS/SSL protocol vulnerability will require NSS upgrade. 

6916391 

Digest authentication buffer overflows. 

6916392 

If TRACE method contains request headers names with a single character and no value (like "A:"), then buffer overflows. 

6916390 

Web Server crashes due WebDav format string. 

6860680 

Appending "::$DATA" to the file extension discloses the contents of JSP page.

6869988 

Web Server 6.1 should bundle JDK6 rather than JDK5, wherever JDK is bundled.

6774064 

Web Server should use NSS 3.12.5.0. 

6882816 

Web Server 6.1 SP 11 Reverse Proxy Plugin retries POST requests without POST entity bodies. 

6917879 

TRACE request with empty header names causes malformed responses. 

6387189 

Java Logging issues in a deployed module 

6837931 

HTTP4352: zlib internal error. Return code from zlib is -5

Incomplete bug fix of 6358858 in Web Server 6.1 shows the above error. 

6214575 

Web Server should not show the dialog for authentication when all access right is denied. 

6372223 

Web Server 6.1SP5 Point Product can not open "Release Notes" from [Start]->[Sun ONE Web Server]->[Release Notes] 

6857848 

When a user tries to configure the ACL with Firefox, the submit button is not displayed. As a result, user cannot configure the ACL with Firefox.