In the meantime, several security vulnerabilities have been found with the current version.
https://portswigger.net/daily-swig/http-request-smuggling-vulnerability- in-apache-tomcat-has-been-present-since-2015 Furthermore, you should skip to version 9.0.48 because there is a BUG in connection with HTTP2: https://bz.apache.org/bugzilla/show_bug.cgi?id=65448 ** Bug watch added: bz.apache.org/bugzilla/ #65448 https://bz.apache.org/bugzilla/show_bug.cgi?id=65448 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1915911 Title: Tomcat9 package is old version with many security issues To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/tomcat9/+bug/1915911/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
