[Bug 265821] www/tomcat{85,9,10,-devel}: Update to 8.5.82, 9.0.65, 10.0.23, 10.1.0-M17 (CVE-2022-34305 - a low severity XSS vulnerability in the Form authentication example)

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 265821] www/tomcat{85,9,10,-devel}: Update to 8.5.82, 9.0.65, 10.0.23, 10.1.0-M17 (CVE-2022-34305 - a low severity XSS vulnerability in the Form authentication example)"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Sat, 13 Aug 2022 22:45:18 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=265821

Nuno Teixeira <eduardo@FreeBSD.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |ports-secteam@FreeBSD.org
 Attachment #235894|                            |maintainer-approval?(ports-
              Flags|                            |secteam@FreeBSD.org)

--- Comment #7 from Nuno Teixeira <eduardo@FreeBSD.org> ---
Created attachment 235894
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=235894&action=edit
vuxml.diff

VE-2022-34305 Apache Tomcat - XSS in examples web application

Severity: Low

Vendor: The Apache Software Foundation

Versions Affected:
Apache Tomcat 10.1.0-M1 to 10.1.0-M16
Apache Tomcat 10.0.0-M1 to 10.0.22
Apache Tomcat 9.0.30 to 9.0.64
Apache Tomcat 8.5.50 to 8.5.81

-- 
You are receiving this mail because:
You are the assignee for the bug.