Re: Are vulnerability patches available for Tomcat 5.5.23

On 6/22/07, Cherie Barnes <[EMAIL PROTECTED]> wrote: > I really don't want to have to re-install everytime... I do not have a Solaris 10 build environment yet so I can't rebuild the server either. ? If installing a new (minor) release seems like a big deal, I'd suggest you're doing something

Re: Are vulnerability patches available for Tomcat 5.5.23

Thanks, that is what I was afraid of..Maybe it's time I put a build environment together. [EMAIL PROTECTED] wrote: Cherie Barnes wrote: Are there any patches available for the Apache Tomcat Application Server (downloaded from tomcat.apache.org)? In 99.9% of cases we do not provide

Re: Are vulnerability patches available for Tomcat 5.5.23

Cherie Barnes wrote: > Are there any patches available for the Apache Tomcat Application Server > (downloaded from tomcat.apache.org)? In 99.9% of cases we do not provide a patch, we provide a new release. Mark - To start a new

Re: Are vulnerability patches available for Tomcat 5.5.23

Tomcat 5.5.24 is expected to be released in a few days. The vulnerability you cited should be rated low impact for most people. There is a similar open issue, both are shortly described on the page http://tomcat.apache.org/security-5.html Both issues only affect the example webapps (which you

Are vulnerability patches available for Tomcat 5.5.23

Are there any patches available for the Apache Tomcat Application Server (downloaded from tomcat.apache.org)? I recently upgraded to 5.5.23 and find that there is a security flaw ( CVE-2007-2450 ) that needs to be fixed. I really do