You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by bu...@apache.org on 2001/09/27 21:56:33 UTC
DO NOT REPLY [Bug 375] -
additional undoc'd security flaw at least in 3.2 BugRat Report#664
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=375>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND
INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=375
additional undoc'd security flaw at least in 3.2 BugRat Report#664
cmanolache@yahoo.com changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |CLOSED
------- Additional Comments From cmanolache@yahoo.com 2001-09-27 12:56 -------
This is resolved in 3.3 and 3.2. All URLs are normalized before security checks.