On 25/08/2021 09:08, Mark Thomas wrote:
Hi all,
OpenSSL have published a security announcement alongside the latest
release:
https://www.openssl.org/news/secadv/20210824.txt
I'm trying to figure out if Tomcat Native is affected by these.
For CVE-2021-3711 it isn't clear to me if the issu
Hi all,
OpenSSL have published a security announcement alongside the latest release:
https://www.openssl.org/news/secadv/20210824.txt
I'm trying to figure out if Tomcat Native is affected by these.
For CVE-2021-3711 it isn't clear to me if the issue relates to just
stand-alone decryption or i
На чт, 25.03.2021 г. в 21:42 ч. Mark Thomas написа:
>
> Hi all,
>
> Given the recent OpenSSL security announcement [1], I think we'll need a
> Tomcat Native release to provide Windows binaries based on OpenSSL 1.1.1k
>
> We can then use the updated Tomcat Native fo
Hi all,
Given the recent OpenSSL security announcement [1], I think we'll need a
Tomcat Native release to provide Windows binaries based on OpenSSL 1.1.1k
We can then use the updated Tomcat Native for the next set of releases,
including what is likely to be the final 7.0.x release.
