You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by ma...@apache.org on 2014/02/02 20:26:01 UTC

svn commit: r1563692 - in /tomcat/site/trunk: docs/security-6.html xdocs/security-6.xml

Author: markt
Date: Sun Feb  2 19:26:00 2014
New Revision: 1563692

URL: http://svn.apache.org/r1563692
Log:
Fix copy/paste error

Modified:
    tomcat/site/trunk/docs/security-6.html
    tomcat/site/trunk/xdocs/security-6.xml

Modified: tomcat/site/trunk/docs/security-6.html
URL: http://svn.apache.org/viewvc/tomcat/site/trunk/docs/security-6.html?rev=1563692&r1=1563691&r2=1563692&view=diff
==============================================================================
--- tomcat/site/trunk/docs/security-6.html (original)
+++ tomcat/site/trunk/docs/security-6.html Sun Feb  2 19:26:00 2014
@@ -334,28 +334,6 @@
     
 <p>Affects: 6.0.0-6.0.37</p>
 
-    
-<p>
-<strong>Important: Denial of service</strong>
-       <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3544" rel="nofollow">CVE-2012-3544</a>
-</p>
-
-    
-<p>When processing a request submitted using the chunked transfer encoding,
-       Tomcat ignored but did not limit any extensions that were included. This
-       allows a client to perform a limited DOS by streaming an unlimited
-       amount of data to the server.</p>
-
-    
-<p>This was fixed in revision <a href="http://svn.apache.org/viewvc?view=rev&amp;rev=1476592">1476592</a>.</p>
-
-    
-<p>This issue was reported to the Tomcat security team on 10 November 2011
-       and made public on 10 May 2013.</p>
-
-    
-<p>Affects: 6.0.0-6.0.36</p>
-
   
 </div>
 <h3 id="Fixed_in_Apache_Tomcat_6.0.37">

Modified: tomcat/site/trunk/xdocs/security-6.xml
URL: http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/security-6.xml?rev=1563692&r1=1563691&r2=1563692&view=diff
==============================================================================
--- tomcat/site/trunk/xdocs/security-6.xml (original)
+++ tomcat/site/trunk/xdocs/security-6.xml Sun Feb  2 19:26:00 2014
@@ -71,21 +71,6 @@
 
     <p>Affects: 6.0.0-6.0.37</p>
 
-    <p><strong>Important: Denial of service</strong>
-       <cve>CVE-2012-3544</cve></p>
-
-    <p>When processing a request submitted using the chunked transfer encoding,
-       Tomcat ignored but did not limit any extensions that were included. This
-       allows a client to perform a limited DOS by streaming an unlimited
-       amount of data to the server.</p>
-
-    <p>This was fixed in revision <revlink rev="1476592">1476592</revlink>.</p>
-
-    <p>This issue was reported to the Tomcat security team on 10 November 2011
-       and made public on 10 May 2013.</p>
-
-    <p>Affects: 6.0.0-6.0.36</p>
-
   </section>
   
   <section name="Fixed in Apache Tomcat 6.0.37" rtext="released 3 May 2013">



---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org