[
https://issues.apache.org/jira/browse/AMQ-8587?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17526197#comment-17526197
]
ASF subversion and git services commented on AMQ-8587:
------------------------------------------------------
Commit 1cd183818b1b1d5fb9137ce1e9c0e71c628dd3a4 in activemq's branch
refs/heads/activemq-5.17.x from Jean-Baptiste Onofré
[ https://gitbox.apache.org/repos/asf?p=activemq.git;h=1cd183818 ]
[AMQ-8587] Upgrade to tomcat 9.0.58
(cherry picked from commit 1fb071f23f530cb2274418d4184ea2ab46a9e93f)
> Upgrade tomcat-servlet-api-9.0.54 and tomcat-websocket-api-9.0.54 to 9.0.58
> ---------------------------------------------------------------------------
>
> Key: AMQ-8587
> URL: https://issues.apache.org/jira/browse/AMQ-8587
> Project: ActiveMQ
> Issue Type: Task
> Affects Versions: 5.16.3
> Environment: tomcat-servlet-api-9.0.54 and
> tomcat-websocket-api-9.0.54 has the Vulnerability
> [CVE-2022-23181|https://vss.wellsfargo.net/vuln/CVE-2022-23181]
> which is fixed in 9.0.58
> Reporter: Nagamma Surwase
> Assignee: Jean-Baptiste Onofré
> Priority: Major
> Fix For: 5.17.1, 5.16.5, 5.18.0
>
> Time Spent: 10m
> Remaining Estimate: 0h
>
--
This message was sent by Atlassian Jira
(v8.20.7#820007)
