You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by bu...@apache.org on 2013/05/10 10:37:26 UTC
[Bug 54178] [CVE-2013-2071] runtime exception in onComplete of
AsyncListener, will make org.apache.catalina.connector.Request not recycled
(orginally reported MESSAGE POST to tomcat, but it called doGet)
https://issues.apache.org/bugzilla/show_bug.cgi?id=54178
Mark Thomas <ma...@apache.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Summary|runtime exception in |[CVE-2013-2071] runtime
|onComplete of |exception in onComplete of
|AsyncListener, will make |AsyncListener, will make
|org.apache.catalina.connect |org.apache.catalina.connect
|or.Request not recycled |or.Request not recycled
|(orginally reported MESSAGE |(orginally reported MESSAGE
|POST to tomcat, but it |POST to tomcat, but it
|called doGet) |called doGet)
--- Comment #14 from Mark Thomas <ma...@apache.org> ---
The Tomcat security team has determined that this bug has security
implications. It has been assigned CVE-2013-2071. The fix was included in the
7.0.40 release.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org