> From: Mittal, Paran (Infosys) [mailto:paran.mit...@astrazeneca.com] > Subject: RE: Tomcat Vulnerabilities for 6.x and 7.x version
> We have checked the link but are unable to find the exact file name where > changes need > to be deploy or steps to follow to apply the fix. To repeat: use the current releases if you want this non-problem fixed. Tomcat does not supply patches, although you could - in theory - extract the relevant code and its dependencies from svn and apply those. Much simpler (and safer) to install the current Tomcat version. > As we are not able to understand the significance of any of the below links: They document which security-relevant issues are corrected in which releases. Start here: http://tomcat.apache.org/security.html - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
