Tracking Resolution of Issue Described in FAQ for CVE-2022-22965

XMLWordPrintable

    • Type: Bug
    • Resolution: Fixed
    • Priority: Medium
    • 8.13.20, 8.20.8, 8.22.2
    • Affects Version/s: 8.13.0, 8.20.0
    • Component/s: Security
    • None
    • 8.13
    • 0
    • Severity 3 - Minor
    • 25

      This issue stands as a place holder to track the progress of resolving the issue described at FAQ for CVE-2022-22965.

      As part of normal security practice, we do not disclose security issues until they are fully resolved in our products so as to mitigate the risk to our customers. In this case the broader security concern was raised publicly by a third party, so broad stroke information about the issue is already available.

      We cannot disclose particular details of the issue, and the FAQ for CVE-2022-22965 remains the single source of truth. Once this issue is resolved, we will update this issue to point to the security disclosure issue with additional detail.

      UPDATE

      We’ve released these new versions with an upgraded version of Tomcat which also serves to mitigate this issue:

            Assignee:
            Unassigned
            Reporter:
            Daniel R
            Votes:
            6 Vote for this issue
            Watchers:
            22 Start watching this issue

              Created:
              Updated:
              Resolved: