Dear Sir and Madams,

I was wondering what the big issue with TLS in 2.2.4 is and if I could help.

Some context: we are using the LDAP client API for some of our projects and 
Sonar found a serious CVE in the current mina library.

Would you mind forwarding me the email thread discussing this or any other 
information, so I can have a look myself?
(I operated a certificate authority for 5 years and maintained associated java 
applications, including debugging mutual ssl connections)

Kind Regards,
Jan Zelmer

Commerzbank AG

DLZ2, Mainzer Landstrasse 153, 60327 Frankfurt am Main
Phone   +49 69 136 270 03
Mobile   +49 160 145 245 0

Reply via email to