Tomcat 5.5 security update?

Antony Kuzmicich antony.kuzmicich at performancecentre.com
Wed Sep 3 06:56:08 UTC 2008


Hello all,

We are currently running the tomcat5.5 package from Etch stable. We've been
advised by our hosting partner that the current version of Tomcat in this
package (5.5.20) has the following security vulnerability: "Apache Tomcat
Multiple Content Headers Information Disclosure".

Apparently this has been fixed in Tomcat 5.5.26.

I know that 5.5.26 is currently in the 'unstable' branch.

Is there any plans to release this as a security patch to Etch stable?

Regards,
Antony Kuzmicich


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.alioth.debian.org/pipermail/pkg-java-maintainers/attachments/20080903/cbe73c9f/attachment.htm 


More information about the pkg-java-maintainers mailing list