> From: Paralos Trainings [mailto:paralostranin...@gmail.com]
> Subject: CVE-2017-6056.
> I'd like to know if the latest version of Tomcat 7 and Tomcat 8 are
> affected by CVE-2017-6056.
Real Tomcat releases (downloaded from tomcat.apache.org) are not affected.
Some 3rd-party repackaged versions do have the problem due to failure on their
part to include relevant fixes.
- Chuck
THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY
MATERIAL and is thus for use only by the intended recipient. If you received
this in error, please contact the sender and delete the e-mail and its
attachments from all computers.
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org