announce@tomcat.apache.org, 2014-02

You are viewing a plain text version of this content. The canonical link for it is here.

- [ANN] Apache Tomcat 6.0.39 released - posted by Mark Thomas <ma...@apache.org> on 2014/02/03 11:17:54 UTC, 0 replies.
- [ANN] Apache Tomcat 8.0.1 (beta) available - posted by Mark Thomas <ma...@apache.org> on 2014/02/03 12:50:46 UTC, 0 replies.
- [SECURITY] CVE-2014-0050 Apache Commons FileUpload and Apache Tomcat DoS - posted by Mark Thomas <ma...@apache.org> on 2014/02/06 12:37:32 UTC, 0 replies.
- [ANN] Apache Tomcat 7.0.52 released - posted by Violeta Georgieva <vi...@apache.org> on 2014/02/19 13:45:40 UTC, 0 replies.
- [SECURITY] CVE-2014-0033 Session fixation still possible with disableURLRewriting enabled - posted by Mark Thomas <ma...@apache.org> on 2014/02/25 12:19:20 UTC, 0 replies.
- [SECURITY] CVE-2013-4286 Incomplete fix for CVE-2005-2090 (Information disclosure) - posted by Mark Thomas <ma...@apache.org> on 2014/02/25 12:19:28 UTC, 0 replies.
- [SECURITY] CVE-2013-4322 Incomplete fix for CVE-2012-3544 (Denial of Service) - posted by Mark Thomas <ma...@apache.org> on 2014/02/25 12:19:30 UTC, 0 replies.
- [SECURITY] CVE-2013-4590 Information disclosure via XXE when running untrusted web applications - posted by Mark Thomas <ma...@apache.org> on 2014/02/25 12:19:38 UTC, 0 replies.