Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-4240

Upgrade tomcat to a version >= 7.0.55

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Medium
    • 2.8.4
    • None
    • None

    Description

      "Request Smuggling CVE-2014-0227" was fixed in Tomcat 7.0.55 as crowd currently seems to bundle tomcat 7.0.54 crowd is vulnerable to CVE-2014-0227.

      Attachments

        Issue Links

          incorporates

          Bug - A problem which impairs or prevents the functions of the product. CWD-4214 Disable SSLv3 in the commented out TLS tomcat configuration

          • Medium - Medium priority issues
          • Closed
          mentioned in

          Page Loading...

          Activity

            People

              jwalton joe
              dblack David Black
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: