Give the recent OpenSSL vulnerability announcements [1], I was planning on starting a tomcat-native 1.2.3 release to provide an updated Windows binary.
There are a few fixes in trunk since 1.2.2. I'll get the changelog updated. I'm currently planning on tagging this on Tuesday 8th Dec. We can probably afford to wait a couple of days if anyone wants to get anything else into a 1.2.3 release. On a related topic, what are people's views on switching 6.0.x, 7.0.x and 8.0.x to 1.2.x rather than 1.1.x? Mark [1] https://www.openssl.org/news/secadv/20151203.txt --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
