On 01/21/2012 07:16 PM, Remy Maucherat wrote:
On Sat, Jan 21, 2012 at 9:02 AM, David Jorm wrote:
Hi All
I am working on resolving the CVE-2012-0022 DoS in JBoss Web, and I wanted to
confirm some details if anyone can help. Based on reading the advisory and
Tomcat patch code, it seems to me
handling a very large number of
parameters is all that is required to resolve CVE-2012-0022, or whether there
is something more to it that I have missed?
Thanks in advance
--
David Jorm / Red Hat Security Response Team
-
To