Does anyone have any suggestions on how to apply these security patches? Is it just a matter of copying the appropriate .jar files to the appropriate location while Tomcat is turned off?
http://tomcat.apache.org/security-5.html The version is Apache-Tomcat 5.5.27