Timothy Wonil Lee wrote:
I am especially interested in those two session hijacking vulnerability
fixes. Are they included in 5.5.25?
Yes.
Second question is: if they are fixed in 5.5.25, is it possible to just drop
in the Jar files (catalina.jar?) to the current production Tomcat server/lib
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 5.5.25 stable.
Apache Tomcat 5.5.25 incorporates numerous security updates and bug fixes.
Please refer to the change log for the list of changes:
http://tomcat.apache.org/tomcat-5.5-doc/changelog.html
Downloads:
On 9/8/07, Filip Hanik - Dev Lists [EMAIL PROTECTED] wrote:
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 5.5.25 stable.
Apache Tomcat 5.5.25 incorporates numerous security updates and bug fixes.
Please refer to the change log for the list of changes:
Thanks, it's underway, syncing to mirrors as we speak
Filip
RuiXian BAO wrote:
On 9/8/07, Filip Hanik - Dev Lists [EMAIL PROTECTED] wrote:
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 5.5.25 stable.
Apache Tomcat 5.5.25 incorporates numerous security