[Bug 67300] Suspected HTTP request smuggling vulnerability

bugzilla Fri, 08 Sep 2023 00:53:57 -0700

https://bz.apache.org/bugzilla/show_bug.cgi?id=67300


Mark Thomas <ma...@apache.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
         Resolution|---                         |INVALID
             Status|NEW                         |RESOLVED

--- Comment #1 from Mark Thomas <ma...@apache.org> ---
First of all, security reports should NOT be posted to a public mailing list.
Security reports should follow the documented process for responsible
disclosure:

https://tomcat.apache.org/security.html

Fortunately, this report is nonsense. It demonstrates HTTP request pipe-lining,
not a security vulnerability.

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 67300] Suspected HTTP request smuggling vulnerability

Reply via email to