[Bug 54178] [CVE-2013-2071] runtime exception in onComplete of AsyncListener, will make org.apache.catalina.connector.Request not recycled (orginally reported MESSAGE POST to tomcat, but it called doGet)

bugzilla Fri, 10 May 2013 01:38:14 -0700

https://issues.apache.org/bugzilla/show_bug.cgi?id=54178


Mark Thomas <ma...@apache.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
            Summary|runtime exception in        |[CVE-2013-2071] runtime
                   |onComplete of               |exception in onComplete of
                   |AsyncListener, will make    |AsyncListener, will make
                   |org.apache.catalina.connect |org.apache.catalina.connect
                   |or.Request not recycled     |or.Request not recycled
                   |(orginally reported MESSAGE |(orginally reported MESSAGE
                   |POST to tomcat, but it      |POST to tomcat, but it
                   |called doGet)               |called doGet)

--- Comment #14 from Mark Thomas <ma...@apache.org> ---
The Tomcat security team has determined that this bug has security
implications. It has been assigned CVE-2013-2071. The fix was included in the
7.0.40 release.

-- 
You are receiving this mail because:
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 54178] [CVE-2013-2071] runtime exception in onComplete of AsyncListener, will make org.apache.catalina.connector.Request not recycled (orginally reported MESSAGE POST to tomcat, but it called doGet)

Reply via email to