Howdy,
I think 4.0.6 is OK. The 4.1 branch stable releases are OK as well, and
recommended as they use the Coyote connector by default (which is
relevant to this security advisory).

Yoav Shapira
Millennium ChemInformatics


>-----Original Message-----
>From: Dan K. [mailto:dantest@(protected)]
>Sent: Thursday, October 16, 2003 11:37 AM
>To: Tomcat Users List
>Subject: Tomcat4 denial of service in debian...
>
>
>Hi,
>
>Does anyone know if the version of tomcat4 mentioned in the
>following advisory applies to 4.0.6?
>
>http://www.securityfocus.com/archive/1/341310
>
>I get the idea that it only applies to the debian packaged version
>(4.0.3?)... ??
>
>Regards,
>Dan
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: tomcat-user-unsubscribe@(protected)
>For additional commands, e-mail: tomcat-user-help@(protected)




This e-mail, including any attachments, is a confidential business communication, and may contain information that is confidential, proprietary and/or privileged. This e-mail is intended only for the individual(s) to whom it is addressed, and may not be saved, copied, printed, disclosed or used by anyone else. If you are not the(an) intended recipient, please immediately delete this e-mail from your computer system and notify the sender. Thank you.


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@(protected)
For additional commands, e-mail: tomcat-user-help@(protected)