tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ben Stringer" <>
Subject Re: Patch information required
Date Thu, 28 Nov 2013 06:36:06 GMT
On Thu, November 28, 2013 5:15 pm, wrote:
> Hi All,

Hi Kanishhk,

> We are using Apache tomcat version 6.0.26 and we need to install below
> patches on our servers to fix some Vulnerabilities.

Is the Apache tomcat instance you are using bundled with the applications
above (from HP, Juniper)? If so, you should get an updated release from
those vendors, as they should have bundled a higher version of Tomcat that
resolves the issues.

You can cross-check your list of CVE vulnerabilities against Tomcat
versions at this page:

Looks like 6.0.37 is the latest version of Tomcat 6.

Cheers, Ben

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message