atom feed20 messages in org.apache.tomcat.devRE: [SECURITY] Security Vulnerabiliti...
FromSent OnAttachments
Craig R. McClanahanDec 11, 2000 5:19 pm 
Remy MaucheratDec 11, 2000 5:28 pm 
Hans BergstenDec 11, 2000 5:38 pm 
Craig R. McClanahanDec 11, 2000 5:59 pm 
Jon StevensDec 11, 2000 6:53 pm 
Jon StevensDec 11, 2000 6:54 pm 
Larry IsaacsDec 11, 2000 6:56 pm 
Nick BaumanDec 11, 2000 9:44 pm 
Kief MorrisDec 12, 2000 2:01 am 
GOMEZ HenriDec 12, 2000 2:02 am 
Brett BergquistDec 12, 2000 5:21 am 
Glenn NielsenDec 12, 2000 7:08 am 
Arieh MarkelDec 12, 2000 7:45 am 
SeanDec 12, 2000 9:07 am 
Mike AndersonDec 12, 2000 9:27 am 
Craig R. McClanahanDec 12, 2000 9:56 am 
Craig R. McClanahanDec 12, 2000 10:02 am 
av...@satori.comDec 12, 2000 1:36 pm 
Glenn NielsenDec 12, 2000 6:30 pm 
Steve DowneyDec 15, 2000 12:12 pm 
Subject:RE: [SECURITY] Security Vulnerabilities in Tomcat 3.1 and 3.2
From:GOMEZ Henri (hgo@slib.fr)
Date:Dec 12, 2000 2:02:34 am
List:org.apache.tomcat.dev

Proposal #1: Release a Tomcat 3.1.1 that fixes *only* the security problems

+1

I'll still be for security updates but release a 3.1.1 could make some users thinking the 3.1 tree is still alive. Could be disturbing some days after 3.2 release.

Proposal #2: Release a Tomcat 3.2.1 that fixes the following security problems plus the patches committed to date.

+ 1

I've also fixed ajp13/multiples cookies. Will it be included ?