You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by "nakagawa.mai@gmail.com" <na...@gmail.com> on 2015/02/03 10:15:08 UTC
Does CVE-2014-8157 affect tomcat?
Hi there,
Does CVE-2014-8157 affect tomcat? The security vulnerability was found in
the way JasPer decoded JPEG 2000 as follows:
https://bugzilla.redhat.com/show_bug.cgi?id=1179282
I know tomcat bundles jasper, so I want to know if the vulnerability affects
tomcat.
Cheers,
Mai Nakagawa
Re: Does CVE-2014-8157 affect tomcat?
Posted by "nakagawa.mai@gmail.com" <na...@gmail.com>.
Relieved to know that. Thank you Mark!
Mai Nakagawa
On Tue, Feb 3, 2015 at 6:26 PM, Mark Thomas <ma...@apache.org> wrote:
> On 03/02/2015 09:15, nakagawa.mai@gmail.com wrote:
> > Hi there,
> >
> > Does CVE-2014-8157 affect tomcat? The security vulnerability was found in
> > the way JasPer decoded JPEG 2000 as follows:
> > https://bugzilla.redhat.com/show_bug.cgi?id=1179282
> >
> > I know tomcat bundles jasper, so I want to know if the vulnerability
> affects
> > tomcat.
>
> Different products. Same name. No impact on Tomcat.
>
> Mark
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
Re: Does CVE-2014-8157 affect tomcat?
Posted by Mark Thomas <ma...@apache.org>.
On 03/02/2015 09:15, nakagawa.mai@gmail.com wrote:
> Hi there,
>
> Does CVE-2014-8157 affect tomcat? The security vulnerability was found in
> the way JasPer decoded JPEG 2000 as follows:
> https://bugzilla.redhat.com/show_bug.cgi?id=1179282
>
> I know tomcat bundles jasper, so I want to know if the vulnerability affects
> tomcat.
Different products. Same name. No impact on Tomcat.
Mark
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org