[ https://issues.apache.org/jira/browse/AMQ-8587?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17526197#comment-17526197 ]
ASF subversion and git services commented on AMQ-8587: ------------------------------------------------------ Commit 1cd183818b1b1d5fb9137ce1e9c0e71c628dd3a4 in activemq's branch refs/heads/activemq-5.17.x from Jean-Baptiste Onofré [ https://gitbox.apache.org/repos/asf?p=activemq.git;h=1cd183818 ] [AMQ-8587] Upgrade to tomcat 9.0.58 (cherry picked from commit 1fb071f23f530cb2274418d4184ea2ab46a9e93f) > Upgrade tomcat-servlet-api-9.0.54 and tomcat-websocket-api-9.0.54 to 9.0.58 > --------------------------------------------------------------------------- > > Key: AMQ-8587 > URL: https://issues.apache.org/jira/browse/AMQ-8587 > Project: ActiveMQ > Issue Type: Task > Affects Versions: 5.16.3 > Environment: tomcat-servlet-api-9.0.54 and > tomcat-websocket-api-9.0.54 has the Vulnerability > [CVE-2022-23181|https://vss.wellsfargo.net/vuln/CVE-2022-23181] > which is fixed in 9.0.58 > Reporter: Nagamma Surwase > Assignee: Jean-Baptiste Onofré > Priority: Major > Fix For: 5.17.1, 5.16.5, 5.18.0 > > Time Spent: 10m > Remaining Estimate: 0h > -- This message was sent by Atlassian Jira (v8.20.7#820007)