incubator-cloudstack-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Chiradeep Vittal <Chiradeep.Vit...@citrix.com>
Subject Re: Impact of tomcat CVE-2012-4534
Date Thu, 06 Dec 2012 18:56:01 GMT
You mean tomcat 7? Not sure. I haven't tried it. Anybody else tried
tomcat7?

On 12/5/12 7:26 PM, "Gavin Lee" <gavin.lxh@gmail.com> wrote:

>So besides 6.0.35, the other higher version also has this issue?
>
>On Thu, Dec 6, 2012 at 2:50 AM, Chiradeep Vittal
><Chiradeep.Vittal@citrix.com> wrote:
>> Versions higher than 6.0.33 have problems with classloading the MySQL
>> driver.
>>
>> On 12/5/12 6:20 AM, "Gavin Lee" <gavin.lxh@gmail.com> wrote:
>>
>>>This vulnerability possibly causes denial of service.
>>>See below link:
>>>http://mail-archives.apache.org/mod_mbox/www-announce/201212.mbox/%3C50B
>>>E5
>>>35A.9000600@apache.org%3E
>>>
>>>It was fixed in tomcat 6.0.36, but we recommand to use 6.0.33.
>>>Should we test a higher version and change the guide?
>>>
>>>--
>>>Gavin
>>
>
>
>
>-- 
>Gavin


Mime
View raw message