subject:"\[SECURITY\] CVE\-2016\-6816 Apache Tomcat Information Disclosure"

Re: [SECURITY] CVE-2016-6816 Apache Tomcat Information Disclosure

2016-11-27 Thread Utkarsh Dave

Please ignore my previous mail. I got the correct one https://tomcat.apache.org/security-7.html On Sun, Nov 27, 2016 at 6:41 PM, Utkarsh Dave wrote: > Hi All > > This vulnerability (CVE-2016-6816) is said to be "Affects: 9.0.0.M1 to > 9.0.0.M11" on another url

Re: [SECURITY] CVE-2016-6816 Apache Tomcat Information Disclosure

2016-11-27 Thread Utkarsh Dave

Hi All This vulnerability (CVE-2016-6816) is said to be "Affects: 9.0.0.M1 to 9.0.0.M11" on another url https://tomcat.apache.org/security-9.html. But in the mail it says Tomcat 7 is also affected. Does this vulnerability affects version 7.0.72 -Regards Utkarsh On Tue, Nov 22, 2016 at 1:42 AM,

[SECURITY] CVE-2016-6816 Apache Tomcat Information Disclosure

2016-11-22 Thread Mark Thomas

CVE-2016-6816 Apache Tomcat Information Disclosure Severity: Important Vendor: The Apache Software Foundation Versions Affected: Apache Tomcat 9.0.0.M1 to 9.0.0.M11 Apache Tomcat 8.5.0 to 8.5.6 Apache Tomcat 8.0.0.RC1 to 8.0.38 Apache Tomcat 7.0.0 to 7.0.72 Apache Tomcat 6.0.0 to 6.0.47