My first post, I hope someone can help as run out of ideas
We have a customer that discovered our Lucee 18.104.22.168 / Tomcat 9.0.41 install has a vulnerability or two so need to upgrade tomcat.
My working lucee installation has this state:
OS: Ubuntu 20.04
Java Version: Open jdk 22.214.171.124
Tomcat Version: 9.0.41
Lucee Version: 126.96.36.199 (UPDATE: also tried 188.8.131.52)
I have tried upgrades to tomcat 9.0.48,.54 and .53 by doing the following
sudo systemctl stop lucee_ctl cd /opt/lucee/tomcat # backup lib mv lib lib-working # wget tomcat... create new lib folder from downloaded lib folder cp -r new-tomcat/lib . # add execute perm to avoid canRead[false] errors chmod g+x lib/*.jar sudo systemctl start lucee_ctl
The service doesnt start though:
tail -f -n 50 logs/catalina.out NOTE: Picked up JDK_JAVA_OPTIONS: --add-opens=java.base/java.lang=ALL-UNNAMED --add-opens=java.base/java.io=ALL-UNNAMED --add-opens=java.rmi/sun.rmi.transport=ALL-UNNAMED java.lang.NoSuchMethodError: 'boolean org.apache.tomcat.util.buf.UriUtil.isAbsoluteURI(java.lang.String)' at org.apache.catalina.startup.CatalinaBaseConfigurationSource.getResource(CatalinaBaseConfigurationSource.java:84) ...
We have been trying to get this working off and on for the last 6 months and now it has landed on my lap.
Anyone had this before? Is there more to do for a tomcat upgrade? Do I need to upgrade Lucee as well?
Any help would be super welcome