[
https://issues.apache.org/jira/browse/OFBIZ-3424?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jacques Le Roux updated OFBIZ-3424:
-----------------------------------
Issue Type: Sub-task (was: Improvement)
Parent: OFBIZ-1525
> Upgrade Tomcat version to 6.0.24
> --------------------------------
>
> Key: OFBIZ-3424
> URL:
https://issues.apache.org/jira/browse/OFBIZ-3424> Project: OFBiz
> Issue Type: Sub-task
> Components: framework
> Affects Versions: Trunk
> Reporter: Erwan de FERRIERES
> Assignee: Erwan de FERRIERES
> Fix For: Trunk
>
> Attachments: ASF.LICENSE.NOT.GRANTED--OFBIZ-3424.diff, OFBIZ-3424.diff, tomcat-6.0.24-annotations-api.jar, tomcat-6.0.24-catalina-ha.jar, tomcat-6.0.24-catalina-tribes.jar, tomcat-6.0.24-catalina.jar, tomcat-6.0.24-el-api.jar, tomcat-6.0.24-jasper-el.jar, tomcat-6.0.24-jasper-jdt.jar, tomcat-6.0.24-jasper.jar, tomcat-6.0.24-jsp-api.jar, tomcat-6.0.24-servlet-api.jar, tomcat-6.0.24-tomcat-coyote.jar, tomcat-6.0.24-tomcat-dbcp.jar, tomcat-6.0.24-tomcat-juli.jar
>
>
> 3 security issues have been released today for Tomcat, asking to migrate to the latest version :
> CVE-2009-2902: Apache Tomcat unexpected file deletion in work directory
> CVE-2009-2901: Apache Tomcat insecure partial deploy after failed undeploy
> CVE-2009-3548: Apache Tomcat unexpected file deletion and/or alteration
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
Locked
