https://bz.apache.org/bugzilla/show_bug.cgi?id=62343
Mark Thomas <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED Status|NEW |RESOLVED --- Comment #2 from Mark Thomas <[email protected]> --- Potential security issues should not be reported via a public bug tracker. Please see the following for details of how to report security issues in Apache Tomcat: http://tomcat.apache.org/security.html Please see the following for details of how to report security issues in any other Apache project: http://www.apache.org/security/ Fixed in: - trunk for 9.0.9 onwards - 8.5.x for 8.5.32 onwards - 8.0.x for 8.0.53 onwards - 7.0.x for 7.0.89 onwards The lack of response was due to the Tomcat committers not wishing to draw further attention to the issue until it had been addressed. This issue has been assigned CVE-2018-8014. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
