https://bz.apache.org/bugzilla/show_bug.cgi?id=65704
Mark Thomas <ma...@apache.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED OS| |All Resolution|--- |INVALID --- Comment #1 from Mark Thomas <ma...@apache.org> --- 1. Security reports should not be posted to public bug trackers or mailing lists. The correct way to report security issues is described here: http://tomcat.apache.org/security.html 2. The parser is not exposed to untrusted user input. It is not exploitable. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org