Vulnerabilities in UAA's Tomcat 7.0.52

[Hristo Iliev]

Currently there are 4 known vulnerabilities in Tomcat 7.0.52, which is used in UAA. While 119 and 96 does not seem like a problem, the other 2 might be exploited. And it is always nice to think that you're safe :)

Do you have plans to use the latest Tomcat 7.0.55, which fixes these 4 issues and seems mostly bug fix release compared to 7.0.52?

[Filip Hanik]

yes. next release. 

On Monday, September 1, 2014, Hristo Iliev <hsi...@gmail.com> wrote:

Currently there are 4 known vulnerabilities in Tomcat 7.0.52, which is used in UAA. While 119 and 96 does not seem like a problem, the other 2 might be exploited. And it is always nice to think that you're safe :)

Do you have plans to use the latest Tomcat 7.0.55, which fixes these 4 issues and seems mostly bug fix release compared to 7.0.52?

--
You received this message because you are subscribed to the Google Groups "Cloud Foundry Developers" group.
To view this discussion on the web visit https://groups.google.com/a/cloudfoundry.org/d/msgid/vcap-dev/11f7c2a7-92e5-4391-b43f-d2e672c654fd%40cloudfoundry.org.

To unsubscribe from this group and stop receiving emails from it, send an email to vcap-dev+u...@cloudfoundry.org.