You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by "Mott, Frank (Dimension Data)" <Fr...@uk.bp.com> on 2008/08/27 11:58:30 UTC
FW: CVE-2008-2370 Query
Please can someone advise me on my query below.
Regards
Frank
Level 2 Support Engineer
GASDO Team
Dimension Data United Kingdom
Dimension Data House
Building 2, Waterfront Business Park
Hampshire GU51 3QT
+44 (0) 1252 779 370 Office
+44 (0) 1252 779 010 Fax
frank.mott@uk.bp.com
-----Original Message-----
From: Frank Mott (Europe) [mailto:frank.mott@uk.didata.com]
Sent: 27 August 2008 09:46
To: Mott, Frank (Dimension Data)
Subject: FW: CVE-2008-2370 Query
-----Original Message-----
From: Mark Thomas [mailto:markt@apache.org]
Sent: 26 August 2008 19:05
To: Frank Mott (Europe)
Cc: Apache Tomcate private security list
Subject: Re: CVE-2008-2370 Query
Frank Mott (Europe) wrote:
> I am currently running Tomcat 5.5.0 and the subject patch has been
> brought to my attention for review. On the Tomcat website it says that
> this patch affects 5.5.0-5.5.26 and as I understand it, I need to
remove
> the version of Tomcat that I am running and install the latest version
> of Tomcat 5.5 which is 5.5.26, but this is in the details as needing
the
> patch? So if I download 5.5.26 and install this will this remove the
> need to patch with CVW-2008-2370?
As per http://tomcat.apache.org/security.html, that is a question for
the users list.
Mark
>
>
>
> Regards
>
> Frank
>
>
>
> Level 2 Support Engineer
>
> Microsoft Support Team
> Dimension Data United Kingdom
> Dimension Data House
> Building 2, Waterfront Business Park
> Hampshire GU51 3QT
> +44 12 5277 9370 Office
> +44 12 5277 9010 Fax
> frank.mott@uk.didata.com
>
> For further information about Dimension Data, please go to
> www.dimensiondata.com <http://www.dimensiondata.com/>
>
> ______________________________________________________
> This email is confidential. If you are not the intended recipient then
> you must not copy it, forward it, use it for any purpose, or disclose
it
> to another person. Please also note that the author of this email is
not
> authorised to; make any offers capable of acceptance unless expressly
> stated in a validly dated and attached document which shall be subject
> to the terms and conditions stated therein or, conclude any contract
on
> behalf of Dimension Data by email. Although Dimension Data has taken
> reasonable precautions to ensure no viruses are present in this email,
> the company cannot accept responsibility for any loss or damage
arising
> from the use of this email or attachments.
>
-----------------------------------------
This email is confidential. If you are not the intended recipient then
you must not copy it, forward it, use it for any purpose, or disclose it
to another person.
Please also note that the author of this email is not authorised to;
make any offers capable of acceptance unless expressly stated in a
validly dated and attached document which shall be subject to the terms
and conditions stated therein or, conclude any contract on behalf of
Dimension Data by email.
Although Dimension Data has taken reasonable precautions to ensure no
viruses are present in this email, the company cannot accept
responsibility for any loss or damage arising from the use of this email
or attachments.
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org
Re: FW: CVE-2008-2370 Query
Posted by Mark Thomas <ma...@apache.org>.
Mott, Frank (Dimension Data) wrote:
>
> Please can someone advise me on my query below.
You need one of the following:
- 5.5.27 (expected to be released shortly)
- a local build with the relevant patch applied
Mark
>
> Regards
> Frank
> Level 2 Support Engineer
> GASDO Team
> Dimension Data United Kingdom
> Dimension Data House
> Building 2, Waterfront Business Park
> Hampshire GU51 3QT
> +44 (0) 1252 779 370 Office
> +44 (0) 1252 779 010 Fax
> frank.mott@uk.bp.com
>
>
> -----Original Message-----
> From: Frank Mott (Europe) [mailto:frank.mott@uk.didata.com]
> Sent: 27 August 2008 09:46
> To: Mott, Frank (Dimension Data)
> Subject: FW: CVE-2008-2370 Query
>
>
>
> -----Original Message-----
> From: Mark Thomas [mailto:markt@apache.org]
> Sent: 26 August 2008 19:05
> To: Frank Mott (Europe)
> Cc: Apache Tomcate private security list
> Subject: Re: CVE-2008-2370 Query
>
> Frank Mott (Europe) wrote:
>> I am currently running Tomcat 5.5.0 and the subject patch has been
>> brought to my attention for review. On the Tomcat website it says that
>
>> this patch affects 5.5.0-5.5.26 and as I understand it, I need to
> remove
>> the version of Tomcat that I am running and install the latest version
>
>> of Tomcat 5.5 which is 5.5.26, but this is in the details as needing
> the
>> patch? So if I download 5.5.26 and install this will this remove the
>> need to patch with CVW-2008-2370?
>
> As per http://tomcat.apache.org/security.html, that is a question for
> the users list.
>
> Mark
>
>
>>
>>
>> Regards
>>
>> Frank
>>
>>
>>
>> Level 2 Support Engineer
>>
>> Microsoft Support Team
>> Dimension Data United Kingdom
>> Dimension Data House
>> Building 2, Waterfront Business Park
>> Hampshire GU51 3QT
>> +44 12 5277 9370 Office
>> +44 12 5277 9010 Fax
>> frank.mott@uk.didata.com
>>
>> For further information about Dimension Data, please go to
>> www.dimensiondata.com <http://www.dimensiondata.com/>
>>
>> ______________________________________________________
>> This email is confidential. If you are not the intended recipient then
>
>> you must not copy it, forward it, use it for any purpose, or disclose
> it
>> to another person. Please also note that the author of this email is
> not
>> authorised to; make any offers capable of acceptance unless expressly
>> stated in a validly dated and attached document which shall be subject
>
>> to the terms and conditions stated therein or, conclude any contract
> on
>> behalf of Dimension Data by email. Although Dimension Data has taken
>> reasonable precautions to ensure no viruses are present in this email,
>
>> the company cannot accept responsibility for any loss or damage
> arising
>> from the use of this email or attachments.
>>
>
>
>
> -----------------------------------------
> This email is confidential. If you are not the intended recipient then
> you must not copy it, forward it, use it for any purpose, or disclose it
> to another person.
>
> Please also note that the author of this email is not authorised to;
> make any offers capable of acceptance unless expressly stated in a
> validly dated and attached document which shall be subject to the terms
> and conditions stated therein or, conclude any contract on behalf of
> Dimension Data by email.
>
> Although Dimension Data has taken reasonable precautions to ensure no
> viruses are present in this email, the company cannot accept
> responsibility for any loss or damage arising from the use of this email
> or attachments.
>
> ---------------------------------------------------------------------
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org