https://issues.apache.org/bugzilla/show_bug.cgi?id=57464
--- Comment #3 from Konstantin Kolinko <knst.koli...@gmail.com> --- Am OpenJDK patch and test case: Disclaimer: just one of first results found via googling. I do not know the full story here. https://fweimer.fedorapeople.org/openjdk/tls-fallback-scsv/jdk.patch That is an OpenJDK patch. I do not know whether it has been applied to Oracle Java. In any case, the patch is dated 2014-10-20 and the current versions of Oracle Java (8u25, 7u72) were released a week earlier on 2014-10-14, so they cannot contain it. Usually a security update on Java (and other Oracle products) comes out in January, but one has not been released yet. Links to early access builds of Java have been mentioned on Tomcat dev list. Maybe somebody likes to test those. http://mail-archives.apache.org/mod_mbox/tomcat-dev/201501.mbox/%3C54B90DB1.7050801%40oracle.com%3E -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
