Re: Inquiry about CVE-2024-5535 Vulnerability in Tomcat 10.1.20 Version

Chris, thanks for your comprehensive explanation about these various mitigation measures. Best regards, Peyton Zhong From: Christopher Schultz Date: Sunday, 7 July 2024 at 1:23 AM To: users@tomcat.apache.org Subject: Re: Inquiry about CVE-2024-5535 Vulnerability in Tomcat 10.1.20 Version [You

Re: Inquiry about CVE-2024-5535 Vulnerability in Tomcat 10.1.20 Version

Hi Mark, Thanks for your information. Let me briefly explain for myself. Because OpenSSL is one of the most widely used open-source cryptographic libraries for implementing secure communications on the internet, it is essential for us to upgrade to secure versions to mitigate various threats,