[
https://issues.apache.org/jira/browse/AMQ-8587?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17526196#comment-17526196
]
ASF subversion and git services commented on AMQ-8587:
------------------------------------------------------
Commit 1aa3031ebe52c33833689f66fb4c5fbbbb008cb1 in activemq's branch
refs/heads/main from Jean-Baptiste Onofré
[ https://gitbox.apache.org/repos/asf?p=activemq.git;h=1aa3031eb ]
Merge pull request #833 from jbonofre/AMQ-8587
[AMQ-8587] Upgrade to tomcat 9.0.58
> Upgrade tomcat-servlet-api-9.0.54 and tomcat-websocket-api-9.0.54 to 9.0.58
> ---------------------------------------------------------------------------
>
> Key: AMQ-8587
> URL: https://issues.apache.org/jira/browse/AMQ-8587
> Project: ActiveMQ
> Issue Type: Task
> Affects Versions: 5.16.3
> Environment: tomcat-servlet-api-9.0.54 and
> tomcat-websocket-api-9.0.54 has the Vulnerability
> [CVE-2022-23181|https://vss.wellsfargo.net/vuln/CVE-2022-23181]
> which is fixed in 9.0.58
> Reporter: Nagamma Surwase
> Assignee: Jean-Baptiste Onofré
> Priority: Major
> Fix For: 5.17.1, 5.16.5, 5.18.0
>
> Time Spent: 10m
> Remaining Estimate: 0h
>
--
This message was sent by Atlassian Jira
(v8.20.7#820007)
