> From: Paralos Trainings [mailto:paralostranin...@gmail.com] > Subject: CVE-2017-6056.
> I'd like to know if the latest version of Tomcat 7 and Tomcat 8 are > affected by CVE-2017-6056. Real Tomcat releases (downloaded from tomcat.apache.org) are not affected. Some 3rd-party repackaged versions do have the problem due to failure on their part to include relevant fixes. - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org