tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From ma...@apache.org
Subject svn commit: r620013 - in /tomcat/site/trunk: docs/security-6.html xdocs/security-6.xml
Date Fri, 08 Feb 2008 22:21:59 GMT
Author: markt
Date: Fri Feb  8 14:21:58 2008
New Revision: 620013

URL: http://svn.apache.org/viewvc?rev=620013&view=rev
Log:
Publish details of CVE-2008-0002

Modified:
    tomcat/site/trunk/docs/security-6.html
    tomcat/site/trunk/xdocs/security-6.xml

Modified: tomcat/site/trunk/docs/security-6.html
URL: http://svn.apache.org/viewvc/tomcat/site/trunk/docs/security-6.html?rev=620013&r1=620012&r2=620013&view=diff
==============================================================================
--- tomcat/site/trunk/docs/security-6.html (original)
+++ tomcat/site/trunk/docs/security-6.html Fri Feb  8 14:21:58 2008
@@ -252,6 +252,20 @@
        returned to the client.</p>
 
     <p>Affects: 6.0.0-6.0.14</p>
+
+    <p>
+<strong>important: Information disclosure</strong>
+       <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0002">
+       CVE-2008-0002</a>
+</p>
+
+    <p>If an exception occurs during the processing of parameters (eg if the
+       client disconnects) then it is possible that the parameters submitted for
+       that request will be incorrectly processed as part of a subsequent
+       request.</p>
+
+    <p>Affects: 6.0.5-6.0.15</p>
+
   </blockquote>
 </p>
 </td>

Modified: tomcat/site/trunk/xdocs/security-6.xml
URL: http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/security-6.xml?rev=620013&r1=620012&r2=620013&view=diff
==============================================================================
--- tomcat/site/trunk/xdocs/security-6.xml (original)
+++ tomcat/site/trunk/xdocs/security-6.xml Fri Feb  8 14:21:58 2008
@@ -45,6 +45,18 @@
        returned to the client.</p>
 
     <p>Affects: 6.0.0-6.0.14</p>
+
+    <p><strong>important: Information disclosure</strong>
+       <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0002">
+       CVE-2008-0002</a></p>
+
+    <p>If an exception occurs during the processing of parameters (eg if the
+       client disconnects) then it is possible that the parameters submitted for
+       that request will be incorrectly processed as part of a subsequent
+       request.</p>
+
+    <p>Affects: 6.0.5-6.0.15</p>
+
   </section>
 
   <section name="Fixed in Apache Tomcat 6.0.14">



---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org


Mime
View raw message