Hello Moritz, Thank you for filing the bug. I've uploaded an updated tomcat6 package for unstable and will get the patch applied for the next tomcat7 upload soon. I'll also look into an upload of 6.0.28 for stable proposed updates.
Cheers, tony On 07/06/2011 10:58 AM, Moritz Muehlenhoff wrote: > Package: tomcat6 > Severity: grave > Tags: security > > (Also applies to Tomcat 5.5 and Tomcat 6) > > Please see > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2204 > > This doesn't warrant a DSA, but could be fixed through a point > update. > > Cheers, > Moritz
signature.asc
Description: OpenPGP digital signature
