Jeff Lord created HDFS-4323:
-------------------------------
Summary: HttpFS is using Tomcat 6.0.32 which has numerous
vulnerabilities
Key: HDFS-4323
URL: https://issues.apache.org/jira/browse/HDFS-4323
Project: Hadoop HDFS
Issue Type: Bug
Affects Versions: 2.0.2-alpha
Reporter: Jeff Lord
Apache Tomcat DIGEST Vulnerabilities Medium CVE-2011-5064 5.0 Fail
Apache Tomcat DIGEST Vulnerabilities Medium CVE-2011-5063 5.0 Fail
Apache Tomcat DIGEST Vulnerabilities Medium CVE-2011-1184 5.0 Fail
Apache Tomcat DIGEST Vulnerabilities Medium CVE-2011-5062 5.0 Fail
Apache Tomcat Multiple Vulnerabilities (201108) Medium CVE-2011-2204 5.0 Fail
Apache Tomcat Multiple Vulnerabilities (201108) Medium CVE-2011-2526 5.0 Fail
Apache Tomcat Multiple Vulnerabilities (201108) Medium CVE-2011-2481 5.0 Fail
Apache Tomcat Multiple Vulnerabilities (201108) Medium CVE-2011-2729 5.0 Fail
Apache Tomcat Request Object Information Disclosure (20111001) Medium
CVE-2011-3375 5.0 Fail
All of these have been fixed in subsequent release of Tomcat.
http://tomcat.apache.org/security-6.html
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
