Uploaded image for project: 'TomEE'
  1. TomEE
  2. TOMEE-2887

Update Apache Tomcat to v8.5.57

    XMLWordPrintableJSON

Details

    • Dependency upgrade
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 7.1.3
    • None
    • TomEE Build
    • None

    Description

      According to http://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.57, Tomcat (currently used in Version 8.5.55) is vulnerable to 

      1. WebSocket DoS CVE-2020-13935
      2. HTTP/2 DoS CVE-2020-13934

      Please consider updating to v8.5.57.

      Attachments

        Issue Links

          duplicates

          Dependency upgrade - Upgrading a dependency to a newer version TOMEE-2863 Update to Tomcat 8.5.57

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              leandro.vale Leandro Vale
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: