https://bz.apache.org/bugzilla/show_bug.cgi?id=62965
--- Comment #1 from Christopher Schultz <ch...@christopherschultz.net> --- (a) What is your evidence that tomcat responses are being confused? (b) Why would you report a vulnerability "this bad" on a public bug-tracker? If you have legitimate proof of a vulnerability, please submit it to secur...@tomcat.apache.org. Before submitting anything else, anywhere, please enable facade-recycling by setting this system property and re-testing. org.apache.catalina.connector.RECYCLE_FACADES=true If your response-confusion turns into IllegalStateExceptions, then the problem is with your application's code retaining references to request and response objects past their intended lifetimes, and the bug is within your application. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
