Is ServiceMix vulnerable to the attack described in CVE-2009-3555? http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3555 http://blogs.sun.com/security/entry/vulnerability_in_tls_protocol_during
A workaround has been committed for Jetty, but has not yet been released. http://archive.codehaus.org/lists/org.codehaus.jetty.dev/msg/[email protected] http://fisheye.codehaus.org/qsearch/jetty?q=cve-2009-3555 Thanks! dave <><
