https://issues.apache.org/bugzilla/show_bug.cgi?id=56596
--- Comment #2 from jeffrey.jan...@polydyne.com --- This is CVE-2014-0224. It's caused my rating on Qualys SSL test to drop from an A+ to an F. Is there any way to mitigate the vulnerability? Mladen? Any chance you could roll us out a new version pretty quickly? Pretty please? In the meantime, I'll see what I can do about building my own. I currently do not have the toolset required. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org