On 20/04/2017 17:14, Durga Srinivasu Karuturi wrote:
> Hi,
>
> We are trying to analyze two of the below CVEs related to tomcat sendfile
> feature.
>
> CVE-2017-5647 (Production tomcat 8.0.26)
> CVE-2017-5651(Current tomcat 8.5.12)
>
> We are enabling compression with NIO connector.
>
> As per
Hi,
We are trying to analyze two of the below CVEs related to tomcat sendfile
feature.
CVE-2017-5647 (Production tomcat 8.0.26)
CVE-2017-5651(Current tomcat 8.5.12)
We are enabling compression with NIO connector.
As per docs, connector level by default sendfile is enabled and sendfile
takes pre