You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by ma...@apache.org on 2014/02/02 20:26:01 UTC
svn commit: r1563692 - in /tomcat/site/trunk: docs/security-6.html
xdocs/security-6.xml
Author: markt
Date: Sun Feb 2 19:26:00 2014
New Revision: 1563692
URL: http://svn.apache.org/r1563692
Log:
Fix copy/paste error
Modified:
tomcat/site/trunk/docs/security-6.html
tomcat/site/trunk/xdocs/security-6.xml
Modified: tomcat/site/trunk/docs/security-6.html
URL: http://svn.apache.org/viewvc/tomcat/site/trunk/docs/security-6.html?rev=1563692&r1=1563691&r2=1563692&view=diff
==============================================================================
--- tomcat/site/trunk/docs/security-6.html (original)
+++ tomcat/site/trunk/docs/security-6.html Sun Feb 2 19:26:00 2014
@@ -334,28 +334,6 @@
<p>Affects: 6.0.0-6.0.37</p>
-
-<p>
-<strong>Important: Denial of service</strong>
- <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3544" rel="nofollow">CVE-2012-3544</a>
-</p>
-
-
-<p>When processing a request submitted using the chunked transfer encoding,
- Tomcat ignored but did not limit any extensions that were included. This
- allows a client to perform a limited DOS by streaming an unlimited
- amount of data to the server.</p>
-
-
-<p>This was fixed in revision <a href="http://svn.apache.org/viewvc?view=rev&rev=1476592">1476592</a>.</p>
-
-
-<p>This issue was reported to the Tomcat security team on 10 November 2011
- and made public on 10 May 2013.</p>
-
-
-<p>Affects: 6.0.0-6.0.36</p>
-
</div>
<h3 id="Fixed_in_Apache_Tomcat_6.0.37">
Modified: tomcat/site/trunk/xdocs/security-6.xml
URL: http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/security-6.xml?rev=1563692&r1=1563691&r2=1563692&view=diff
==============================================================================
--- tomcat/site/trunk/xdocs/security-6.xml (original)
+++ tomcat/site/trunk/xdocs/security-6.xml Sun Feb 2 19:26:00 2014
@@ -71,21 +71,6 @@
<p>Affects: 6.0.0-6.0.37</p>
- <p><strong>Important: Denial of service</strong>
- <cve>CVE-2012-3544</cve></p>
-
- <p>When processing a request submitted using the chunked transfer encoding,
- Tomcat ignored but did not limit any extensions that were included. This
- allows a client to perform a limited DOS by streaming an unlimited
- amount of data to the server.</p>
-
- <p>This was fixed in revision <revlink rev="1476592">1476592</revlink>.</p>
-
- <p>This issue was reported to the Tomcat security team on 10 November 2011
- and made public on 10 May 2013.</p>
-
- <p>Affects: 6.0.0-6.0.36</p>
-
</section>
<section name="Fixed in Apache Tomcat 6.0.37" rtext="released 3 May 2013">
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org