announce  

Messages by Thread

• [ANN] Apache Tomcat 8.0.41 available Violeta Georgieva
• [ANN] Apache Tomcat 7.0.75 released Violeta Georgieva
• [SECURITY][UPDATE] CVE-2016-8745 Apache Tomcat Information Disclosure Mark Thomas
• [SECURITY] CVE-2016-8745 Apache Tomcat Information Disclosure Mark Thomas
• [ANN] Apache Tomcat 8.5.9 available Mark Thomas
• [ANN] Apache Tomcat 9.0.0.M15 available Mark Thomas
• [SECURITY] CVE-2016-8735 Apache Tomcat Remote Code Execution Mark Thomas
• [SECURITY] CVE-2016-6816 Apache Tomcat Information Disclosure Mark Thomas
• [SECURITY] CVE-2016-6817 Apache Tomcat Denial of Service Mark Thomas
• [ANN] Apache Tomcat 6.0.48 available Violeta Georgieva
• [ANN] Apache Tomcat 8.0.39 available Violeta Georgieva
• [ANN] Apache Tomcat 7.0.73 released Violeta Georgieva
• [ANN] Apache Tomcat 8.5.8 available Mark Thomas
• [ANN] Apache Tomcat 9.0.0.M13 available Mark Thomas
• [SECURITY] CVE-2016-6797 Apache Tomcat Unrestricted Access to Global Resources Mark Thomas
• [SECURITY] CVE-2016-6796 Apache Tomcat Security Manager Bypass Mark Thomas
• [SECURITY] CVE-2016-0762 Apache Tomcat Realm Timing Attack Mark Thomas
• [SECURITY] CVE-2016-6794 Apache Tomcat Security System Property Disclosure Mark Thomas
• [SECURITY] CVE-2016-5018 Apache Tomcat Security Manager Bypass Mark Thomas
• [ANN] Apache Tomcat 6.0.47 available Violeta Georgieva
• [ANN] Apache Tomcat 8.0.38 available Mark Thomas
• [ANN] Apache Tomcat 8.5.6 available Mark Thomas
• [ANN] Apache Tomcat 9.0.0.M11 available Mark Thomas
• [ANN] Apache Tomcat Native 1.2.10 released Mark Thomas
• [SECURITY] CVE-2016-6808 Apache Tomcat JK ISAPI Connector buffer overflow Mark Thomas
• [ANN] Apache Tomcat Connectors 1.2.42 released Mark Thomas
• [ANN] Apache Tomcat 7.0.72 released Violeta Georgieva
• [ANN] Apache Tomcat 8.5.5 available Mark Thomas
• [ANN] Apache Tomcat 8.0.37 available Mark Thomas
• [ANN] Apache Tomcat 9.0.0.M10 available Mark Thomas
• [ANN] Apache Tomcat 8.5.4 available Mark Thomas
• [ANN] Apache Tomcat 9.0.0.M9 available Mark Thomas
• [ANN] Apache Tomcat Native 1.2.8 released Mark Thomas
• [SECURITY][CORRECTION] CVE-2016-3092 Apache Tomcat Denial of Service Mark Thomas
• [ANN] Apache Tomcat 7.0.70 released Violeta Georgieva
• [ANN] Apache Tomcat 8.0.36 available Mark Thomas
• [ANN] Apache Tomcat 8.5.3 available Mark Thomas
• [ANN] Apache Tomcat 9.0.0.M8 available Mark Thomas
• [ANN] Apache Tomcat 8.0.35 available Mark Thomas
• [ANN] Apache Tomcat 8.5.2 BETA available Mark Thomas
• [ANN] Apache Tomcat 9.0.0.M6 available Mark Thomas
• [ANN] Apache Tomcat Native 1.2.7 released Mark Thomas
• [ANN] Apache Tomcat 7.0.69 released Violeta Georgieva
• [ANN] Apache Tomcat 8.5.0 BETA available Mark Thomas
• [ANN] Apache Tomcat 8.0.33 available Mark Thomas
• [ANN] Apache Tomcat 9.0.0.M4 available Mark Thomas
• [ANN] Apache Tomcat Native 1.2.5 released Mark Thomas
• [SECURITY] CVE-2015-5174 Apache Tomcat Limited Directory Traversal Mark Thomas
• [SECURITY] CVE-2015-5346 Apache Tomcat Session fixation Mark Thomas
• [SECURITY] CVE-2016-0706 Apache Tomcat Security Manager bypass Mark Thomas
• [SECURITY] CVE-2015-5351 Apache Tomcat CSRF token leak Mark Thomas
• [SECURITY] CVE-2016-0714 Apache Tomcat Security Manager Bypass Mark Thomas
• [SECURITY] CVE-2015-5345 Apache Tomcat Directory disclosure Mark Thomas
• [SECURITY] CVE-2016-0763 Apache Tomcat Security Manager Bypass Mark Thomas
• [ANN] Apache Tomcat 7.0.68 released Violeta Georgieva
• [ANN] Apache Tomcat 6.0.45 available Jean-Frederic Clere
• [ANN] Apache Tomcat 8.0.32 available Mark Thomas
• [ANN] Apache Tomcat 9.0.0.M3 available Mark Thomas
• [ANN] Apache Tomcat Native 1.2.4 released Mark Thomas
• [ANN] Apache Tomcat Native 1.1.34 released Mark Thomas
• [ANN] Apache Tomcat Native 1.2.3 released Mark Thomas
• [ANN] Apache Tomcat 7.0.67 released Violeta Georgieva
• [ANN] Apache Tomcat 8.0.30 available Mark Thomas
• [ANN] Apache Tomcat 8.0.29 available Mark Thomas
• [ANN] Apache Tomcat 9.0.0.M1 available Mark Thomas
• [ANN] Apache Tomcat Native 1.2.2 released Mark Thomas
• [ANN] Apache Tomcat 7.0.65 released Violeta Georgieva
• [ANN] Apache Tomcat 8.0.28 available Mark Thomas
• [ANN] Apache Tomcat 8.0.27 available Mark Thomas
• [ANN] Apache Tomcat 7.0.64 released Violeta Georgieva
• [ANN] Apache Tomcat 8.0.26 available Mark Thomas
• [ANN] Apache Tomcat Connectors 1.2.41 released Mark Thomas
• [ANN] Apache Tomcat 8.0.24 available Mark Thomas
• [ANN] Apache Tomcat 7.0.63 released Violeta Georgieva
• [ANN] End of life for Apache Tomcat 6.0.x Mark Thomas
• [ANN] Apache Tomcat 8.0.23 available Mark Thomas
• [ANN] Apache Tomcat 7.0.62 released Violeta Georgieva
• [SECURITY] CVE-2014-7810: Apache Tomcat Security Manager Bypass Mark Thomas
• [ANN] Apache Tomcat 6.0.44 available Mark Thomas
• [ANN] Apache Tomcat 8.0.22 available Mark Thomas
• [SECURITY] CVE-2014-0230: Apache Tomcat DoS Mark Thomas
• [ANN] Apache Tomcat 7.0.61 released Violeta Georgieva
• [ANN] Apache Tomcat 8.0.21 available Mark Thomas
• [ANN] Apache Tomcat Native 1.1.33 released Mark Thomas
• [ANN] Apache Standard Taglib 1.2.5 released Jeremy Boynes
• [ANN} Apache Standard Taglib 1.2.3 released Jeremy Boynes
• [SECURITY] CVE-2015-0254 XXE and RCE via XSL extension in JSTL XML tags Jeremy Boynes
• [ANN] Apache Tomcat 8.0.20 available Mark Thomas
• [ANN] Apache Tomcat 7.0.59 released Violeta Georgieva
• [SECURITY] CVE-2014-0227 Apache Tomcat Request Smuggling Mark Thomas
• [ANN] Apache Tomcat 8.0.18 available Mark Thomas
• [ANN] Apache Tomcat 8.0.17 available Mark Thomas
• [ANN] Apache Tomcat 6.0.43 released Mark Thomas
• [ANN] Apache Tomcat 7.0.57 released Violeta Georgieva
• [ANN] Apache Tomcat 8.0.15 available Mark Thomas
• [ANN] Apache Tomcat Native 1.1.32 released Mark Thomas
  • Re: [ANN] Apache Tomcat Native 1.1.32 released Mark Thomas
• [ANN] Apache Tomcat 7.0.56 released Violeta Georgieva
• [ANN] Apache Tomcat 8.0.14 available Mark Thomas
• [SECURITY] CVE-2013-4444 Remote Code Execution in Apache Tomcat Mark Thomas
• [ANN] Apache Tomcat 8.0.12 available Mark Thomas
• [ANN] Apache Tomcat 8.0.11 (stable) available Mark Thomas
• [ANN] Apache Tomcat 7.0.55 released Violeta Georgieva
• [ANN] Apache Tomcat Native 1.1.31 released Mark Thomas
• [ANN] Apache Tomcat 8.0.9 (stable) available Mark Thomas
• [SECURITY] CVE-2014-0119 Apache Tomcat information disclosure Mark Thomas
• [SECURITY] CVE-2014-0095 Apache Tomcat denial of service Mark Thomas
• [SECURITY] CVE-2014-0075 Apache Tomcat denial of service Mark Thomas
• [SECURITY] CVE-2014-0096 Apache Tomcat information disclosure Mark Thomas
• [SECURITY] CVE-2014-0097 Apache Tomcat information disclosure Mark Thomas
  • Re: [SECURITY] CVE-2014-0099 Apache Tomcat information disclosure Mark Thomas
• [ANN] Apache Tomcat 7.0.54 released Violeta Georgieva
• [ANN] Apache Tomcat 6.0.41 released Mark Thomas
• [ANN] Apache Tomcat 8.0.8 (beta) available Mark Thomas
• [ANN] Apache Tomcat Native 1.1.30 released Mladen Turk
• [ANN] Apache Tomcat Connectors 1.2.40 released Mladen Turk
• [ANN] Apache Tomcat 7.0.53 released Violeta Georgieva
• [ANN] Apache Tomcat 8.0.5 (beta) available Mark Thomas
• [ANN] Apache Tomcat Connectors 1.2.39 released Mladen Turk
• Apache Tomcat Summit Mark Thomas
• [SECURITY] CVE-2013-4590 Information disclosure via XXE when running untrusted web applications Mark Thomas
• [SECURITY] CVE-2013-4286 Incomplete fix for CVE-2005-2090 (Information disclosure) Mark Thomas
• [SECURITY] CVE-2014-0033 Session fixation still possible with disableURLRewriting enabled Mark Thomas
• [SECURITY] CVE-2013-4322 Incomplete fix for CVE-2012-3544 (Denial of Service) Mark Thomas
• [ANN] Apache Tomcat 7.0.52 released Violeta Georgieva
• [SECURITY] CVE-2014-0050 Apache Commons FileUpload and Apache Tomcat DoS Mark Thomas
• [ANN] Apache Tomcat 8.0.1 (beta) available Mark Thomas
• [ANN] Apache Tomcat 6.0.39 released Mark Thomas
• [ANN] Apache Standard Taglib 1.2.1 released Jeremy Boynes
• [ANN] Apache Tomcat 7.0.50 released Violeta Georgieva
• [ANN] Apache Tomcat 8.0.0-RC10 (alpha) available Mark Thomas
• [ANN] Apache Tomcat 7.0.47 released Violeta Georgieva
• [ANN] Apache Tomcat 8.0.0-RC5 (alpha) available Mark Thomas
• [ANN] Apache Tomcat Native 1.1.29 released Mladen Turk
• [ANN] Apache Tomcat 8.0.0-RC3 (alpha) available Mark Thomas
• [ANN] Apache Tomcat Native 1.1.28 released Mladen Turk
• [ANN] Apache Tomcat 8.0.0-RC1 (alpha) available Mark Thomas
• [ANN] Apache Tomcat 7.0.42 released Mark Thomas
• [ANN] Apache Tomcat 7.0.41 released Mark Thomas
• CVE-2013-2071 Request mix-up if AsyncListener method throws RuntimeException Mark Thomas
• [ANN] Apache Tomcat 7.0.40 released Mark Thomas
• [SECURITY] CVE-2013-2067 Session fixation with FORM authenticator Mark Thomas
• [SECURITY] CVE-2012-3544 Chunked transfer encoding extension size is not limited Mark Thomas
• [ANN] Apache Tomcat 6.0.37 released Jean-Frederic Clere
• [ANN] Apache Tomcat 7.0.39 released Mark Thomas
• [ANN] Apache Tomcat 7.0.37 released Mark Thomas
• [ANN] Apache Tomcat Native 1.1.27 released Mladen Turk
• [ANN] Apache Tomcat 7.0.35 released Mark Thomas
• [ANN] Apache Tomcat 7.0.34 released Mark Thomas
• CVE-2012-4431 Apache Tomcat Bypass of CSRF prevention filter Mark Thomas
• CVE-2012-3546 Apache Tomcat Bypass of security constraints Mark Thomas
• CVE-2012-4534 Apache Tomcat denial of service Mark Thomas
• [ANN] Apache Tomcat 7.0.33 released Mark Thomas
• Fwd: [ANN] Apache Tomcat 6.0.36 released Mark Thomas
• [SECURITY] CVE-2012-3439 Apache Tomcat DIGEST authentication weaknesses Mark Thomas
• [SECURITY] CVE-2012-2733 Apache Tomcat Denial of Service Mark Thomas
• [ANN] Apache Tomcat 5.5.36 released Mark Thomas
• [ANN] Apache Tomcat 7.0.32 released Mark Thomas
• [ANN] Apache Tomcat Maven Plugin 2.0 Olivier Lamy
• [ANN] Apache Tomcat 7.0.30 released Mark Thomas
• [ANN] Apache Tomcat 7.0.29 released Mark Thomas
• [ANN] Apache Tomcat 7.0.28 released Mark Thomas
• [ANN] Apache Tomcat Native 1.1.24 released Mladen Turk
• [ANN] Apache Tomcat Connectors 1.2.37 released Mladen Turk
• [ANN] Apache Tomcat Connectors 1.2.36 released Mladen Turk
• [ANN] Apache Tomcat 7.0.27 released Mark Thomas
• [ANN] Apache Tomcat Connectors 1.2.35 released Mladen Turk
• [ANN] Apache Tomcat Connectors 1.2.33 stability issue Mladen Turk
• [ANN] Apache Tomcat Connectors 1.2.33 released Mladen Turk
• [ANN] Apache Tomcat Native 1.1.23 released Mladen Turk
• [ANN] Apache Tomcat 7.0.26 released Mark Thomas
• [ANN] Apache Tomcat 7.0.25 released Mark Thomas
• [SECURITY] CVE-2012-0022 Apache Tomcat Denial of Service Mark Thomas
• [SECURITY] CVE-2011-3375 Apache Tomcat Information disclosure Mark Thomas
• [SECURITY] Apache Tomcat and the hashtable collision DoS vulnerability Mark Thomas
• [ANN] Apache Tomcat 6.0.35 released Jean-Frederic Clere
• [ANN] Apache Tomcat 7.0.23 released Mark Thomas
• [SECURITY] CVE-2011-3376 Apache Tomcat - Privilege Escalation via Manager app Mark Thomas
• [ANN] Apache Tomcat 7.0.22 released Mark Thomas
• [SECURITY] CVE-2011-1184 Apache Tomcat - Multiple weaknesses in HTTP DIGEST authentication Mark Thomas
• [ANN] Apache Tomcat 7.0.21 released Mark Thomas
• [SECURITY] CVE-2011-3190 Apache Tomcat Authentication bypass and information disclosure Mark Thomas
• [ANN] Apache Tomcat 6.0.33 released Jean-Frederic Clere
• [SECURITY] CVE-2011-2481: Apache Tomcat information disclosure vulnerability Mark Thomas
• [SECURITY] CVE-2011-2729: Commons Daemon fails to drop capabilities (Apache Tomcat) Mark Thomas
• [ANN] Apache Tomcat 7.0.20 released Mark Thomas
• [ANN] End of life for Apache Tomcat 5.5.x Mark Thomas
  • Re: [ANN] End of life for Apache Tomcat 5.5.x Mark Thomas
• [ANN] Apache Tomcat Native 1.1.22 released Jean-Frederic Clere
• [ANN] Apache Tomcat 7.0.19 released Mark Thomas
• [SECURITY] CVE-2011-2526 Apache Tomcat Information disclosure and availability vulnerabilities Mark Thomas
• [ANN] Apache Tomcat Connectors 1.2.32 released Mladen Turk
• [SECURITY] CVE-2011-2204 - Apache Tomcat information disclosure Mark Thomas
• [ANN] Apache Tomcat 7.0.16 released Mark Thomas
• [SECURITY] CVE-2011-1582 Apache Tomcat security constraint bypass Mark Thomas
• [ANN] Apache Tomcat 7.0.14 released markt
• [SECURITY] CVE-2011-1475 Apache Tomcat information disclosure Mark Thomas
• [SECURITY] CVE-2011-1183 Apache Tomcat security constraint bypass Mark Thomas
• [ANN] Apache Tomcat 7.0.12 released Mark Thomas
• [SECURITY] CVE-2011-1088 Apache Tomcat security constraint bypass Mark Thomas

• Earlier messages