You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@bigtop.apache.org by "Roman Shaposhnik (JIRA)" <ji...@apache.org> on 2013/01/22 17:40:12 UTC
[jira] [Updated] (BIGTOP-812) HttpFS is using Tomcat 6.0.32 which
has numerous vulnerabilities
[ https://issues.apache.org/jira/browse/BIGTOP-812?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Roman Shaposhnik updated BIGTOP-812:
------------------------------------
Issue Type: Sub-task (was: Bug)
Parent: BIGTOP-816
> HttpFS is using Tomcat 6.0.32 which has numerous vulnerabilities
> ----------------------------------------------------------------
>
> Key: BIGTOP-812
> URL: https://issues.apache.org/jira/browse/BIGTOP-812
> Project: Bigtop
> Issue Type: Sub-task
> Affects Versions: 0.4.0
> Reporter: Jeff Lord
>
> Apache Tomcat DIGEST Vulnerabilities Medium CVE-2011-5064 5.0 Fail
> Apache Tomcat DIGEST Vulnerabilities Medium CVE-2011-5063 5.0 Fail
> Apache Tomcat DIGEST Vulnerabilities Medium CVE-2011-1184 5.0 Fail
> Apache Tomcat DIGEST Vulnerabilities Medium CVE-2011-5062 5.0 Fail
> Apache Tomcat Multiple Vulnerabilities (201108) Medium CVE-2011-2204 5.0 Fail
> Apache Tomcat Multiple Vulnerabilities (201108) Medium CVE-2011-2526 5.0 Fail
> Apache Tomcat Multiple Vulnerabilities (201108) Medium CVE-2011-2481 5.0 Fail
> Apache Tomcat Multiple Vulnerabilities (201108) Medium CVE-2011-2729 5.0 Fail
> Apache Tomcat Request Object Information Disclosure (20111001) Medium CVE-2011-3375 5.0 Fail
> All of these have been fixed in subsequent release of Tomcat.
> http://tomcat.apache.org/security-6.html
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira