The Apache Tomcat team announces the immediate availability of Apache
Tomcat Native 1.2.26 stable.
The key features of this release are:
- Windows binaries built using 1.1.1i
- Expose support for Unix domain sockets (bug 64942)
Please refer to the change log for the complete list of changes:
http
CVE-2020-17519: Apache Flink directory traversal attack: reading remote
files through the REST API
Vendor:
The Apache Software Foundation
Versions Affected:
1.11.0, 1.11.1, 1.11.2
Description:
A change introduced in Apache Flink 1.11.0 (and released in 1.11.1 and
1.11.2 as well) allows attackers
CVE-2020-17518: Apache Flink directory traversal attack: remote file
writing through the REST API
Vendor:
The Apache Software Foundation
Versions Affected:
1.5.1 to 1.11.2
Description:
Flink 1.5.1 introduced a REST handler that allows you to write an uploaded
file to an arbitrary location on the
