[ https://issues.apache.org/jira/browse/AMQ-8587?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17526196#comment-17526196 ]
ASF subversion and git services commented on AMQ-8587: ------------------------------------------------------ Commit 1aa3031ebe52c33833689f66fb4c5fbbbb008cb1 in activemq's branch refs/heads/main from Jean-Baptiste Onofré [ https://gitbox.apache.org/repos/asf?p=activemq.git;h=1aa3031eb ] Merge pull request #833 from jbonofre/AMQ-8587 [AMQ-8587] Upgrade to tomcat 9.0.58 > Upgrade tomcat-servlet-api-9.0.54 and tomcat-websocket-api-9.0.54 to 9.0.58 > --------------------------------------------------------------------------- > > Key: AMQ-8587 > URL: https://issues.apache.org/jira/browse/AMQ-8587 > Project: ActiveMQ > Issue Type: Task > Affects Versions: 5.16.3 > Environment: tomcat-servlet-api-9.0.54 and > tomcat-websocket-api-9.0.54 has the Vulnerability > [CVE-2022-23181|https://vss.wellsfargo.net/vuln/CVE-2022-23181] > which is fixed in 9.0.58 > Reporter: Nagamma Surwase > Assignee: Jean-Baptiste Onofré > Priority: Major > Fix For: 5.17.1, 5.16.5, 5.18.0 > > Time Spent: 10m > Remaining Estimate: 0h > -- This message was sent by Atlassian Jira (v8.20.7#820007)