subject:"re\: Apache Tomcat Vulnerabilities"

RE: Apache Tomcat Vulnerabilities

2016-04-28 Thread Taylor, Larry

Thanks Andre If an upgrade we will bump up to Tomcat 9 if this is a stable release -Original Message- From: André Warnier (tomcat) [mailto:a...@ice-sa.com] Sent: Thursday, April 28, 2016 1:24 PM To: users@tomcat.apache.org Subject: Re: Apache Tomcat Vulnerabilities On 28.04.2016 21:48

Re: Apache Tomcat Vulnerabilities

2016-04-28 Thread tomcat

On 28.04.2016 21:48, Taylor, Larry wrote: Hello, I am using Tomcat Version: apache-tomcat-7.0.50 That version dates back to 2014. The latest version in that branch is 7.0.69 See : http://tomcat.apache.org/download-70.cgi OS: Red Hat Enterprise Linux Server release 6.5 (Santiago) 64bit Issue

re: Apache Tomcat Vulnerabilities

2016-04-28 Thread Taylor, Larry

Hello, I am using Tomcat Version: apache-tomcat-7.0.50 OS: Red Hat Enterprise Linux Server release 6.5 (Santiago) 64bit Issue: There were 2 vulnerabilities found and need to know if there are configurations or patches available to resolve these. 1. Tomcat was configured to use SSL https