The Tomcat Team announces the immediate availability of Apache Tomcat
4.1.27 Stable. Among other bugfixes and improvements, Tomcat 4.1.27
includes security fixes for:
- Improper recycling of SSL client certificates with Coyote JK 2
- Improper handling of invalid content lengths in requests, causing HTTP
processors to be left in an invalid state in Coyote HTTP/1.1, causing a
DoS condition
- URI normalization bug in Coyote
- Improper handling of certain URLs in Coyote JK 2, causing a DoS condition
Downloads: http://jakarta.apache.org/site/binindex.cgi
Remy
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@(protected)
For additional commands, e-mail: tomcat-user-help@(protected)
