https://bz.apache.org/bugzilla/show_bug.cgi?id=67300
Mark Thomas <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |INVALID Status|NEW |RESOLVED --- Comment #1 from Mark Thomas <[email protected]> --- First of all, security reports should NOT be posted to a public mailing list. Security reports should follow the documented process for responsible disclosure: https://tomcat.apache.org/security.html Fortunately, this report is nonsense. It demonstrates HTTP request pipe-lining, not a security vulnerability. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
