Hi,
Does heartbleeding bug impact on Tomcat 6.x, 7.x and 8.x ? I noticed that Tomcat native connector version 1.1.22 uses : OpenSSL 0.9.8 which doesn't have the heartbleeding bug, but 1.1.24 and 1.1.29 also include the buggy openssl. How can I find which version of Tomcat uses which version of Tomcat native connector ? For example, how can I figure out which version of Tomcat native connector is used by Tomcat 7.0 build 47. Thanks, Ji CONFIDENTIALITY NOTE: The information contained herein this email is intended for the exclusive use of the original recipient. The information in this email and any attachments is granted for the sole use of the intended recipient and may be distributed within the recipient's organization only with the permission of the sender. Any further dissemination, whether private or public, is prohibited and may be covered under a non-disclosure agreement. If you are not the intended recipient, please contact the sender immediately and permanently delete the original email together with any copies thereof, including any attachments. Thank you for your cooperation.