[
https://issues.apache.org/jira/browse/OFBIZ-6752?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jacques Le Roux closed OFBIZ-6752.
----------------------------------
Resolution: Fixed
Fix Version/s: (was: 12.04.06)
MD5 Checked, committed in
trunk r1717760
R14.12 r1717761
R13.07 r1717762
> Updates Tomcat to 7.0.65
> ------------------------
>
> Key: OFBIZ-6752
> URL:
https://issues.apache.org/jira/browse/OFBIZ-6752> Project: OFBiz
> Issue Type: Sub-task
> Components: framework
> Affects Versions: Trunk
> Reporter: Jacques Le Roux
> Assignee: Jacques Le Roux
> Fix For: 14.12.01, 13.07.03, Upcoming Branch
>
>
> Though disputed CVE-2013-2185 indicates a possible vulnerabilty with jasper.jar. Better safe than sorry: I will backport to all concerned branches (R14 and R13)
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
Locked
