Hi, I was wondering, whether there is a chance to get CVE-2020-1938 fixed in Tomcat8 in Stretch? If the chances are low possibly backporting Tomcat9 to stretch-backports-sloppy would be a feasible way to go for me. What would you recomment?
Kind regards
Andreas.
--
http://fam-tille.de
