Update Tomcat to 9.5.14
Risk Information
CVE Information
CVE-2017-12615
Associated CVE
CVE-2017-12615
CVE-2017-12617
CVE-2016-8735
CVE-2000-0672
CVE-2000-0760
CVE-2003-0042
CVE-2014-0050
CVE-2010-4172
CVE-2002-0682
CVE-2002-1567
CVE-2012-4431
CVE-2006-7196
CVE-2009-3548
CVE-2016-5018
CVE-2008-2370
CVE-2016-5388
CVE-2005-4703
CVE-2017-12616
CVE-2008-2938
CVE-2007-0450
CVE-2007-5461
CVE-2009-0580
CVE-2011-0013
CVE-2008-5515
CVE-2011-1475
CVE-2018-1305
CVE-2007-1355
CVE-2007-2449
CVE-2009-0781
CVE-2007-5333
CVE-2008-0128
CVE-2010-1157
CVE-2007-1858
CVE-2000-0759
CVE-2001-0590
CVE-2002-1148
CVE-2002-2006
CVE-2002-2007
CVE-2006-3835
CVE-2007-3382
CVE-2007-3386
CVE-2018-1304
CVE-2016-3092
CVE-2013-4322
CVE-2010-2227
CVE-2003-0866
CVE-2013-4590
CVE-2014-0119
CVE-2008-1232
CVE-2000-1210
CVE-2002-0493
CVE-2002-2009
CVE-2005-4836
CVE-2007-4724
CVE-2008-3271
CVE-2008-4308
CVE-2009-2901
CVE-2009-2902
CVE-2010-4312
CVE-2011-1088
CVE-2011-1183
CVE-2011-1184
CVE-2011-1419
CVE-2011-1582
CVE-2011-3190
CVE-2011-5062
CVE-2011-5063
CVE-2011-5064
CVE-2012-3546
CVE-2012-5885
CVE-2012-5886
CVE-2012-5887
CVE-2014-0033
CVE-2018-8014
CVE-2011-4858
CVE-2006-7195
CVE-2016-1240
CVE-2016-5425
CVE-2002-0936
CVE-2014-0075
CVE-2014-0096
CVE-2016-0714
CVE-2003-0044
CVE-2007-1358
CVE-2007-2450
CVE-2007-3383
CVE-2007-5342
CVE-2009-2693
CVE-2010-3718
CVE-2011-2729
CVE-2016-6797
CVE-2017-7675
CVE-2016-6796
CVE-2017-5664
CVE-2014-7810
CVE-2008-1947
CVE-2001-0917
CVE-2002-1394
CVE-2002-2008
CVE-2003-0043
CVE-2006-7197
CVE-2007-3385
CVE-2007-6286
CVE-2008-0002
CVE-2011-2204
CVE-2011-2481
CVE-2016-8747
CVE-2016-8745
CVE-2017-5647
CVE-2017-5648
CVE-2002-2272
CVE-2001-1563
CVE-2015-5174
CVE-2013-2067
CVE-2015-5351
CVE-2009-2696
CVE-2002-0935
CVE-2005-3510
CVE-2012-5568
CVE-2015-5345
CVE-2016-6794
CVE-2001-0829
CVE-2005-2090
CVE-2005-3164
CVE-2007-3384
CVE-2008-5519
CVE-2011-3375
CVE-2013-2071
CVE-2017-5651
CVE-2014-0099
CVE-2016-6816
CVE-2015-5346
CVE-2002-1895
CVE-2003-0045
CVE-2005-0808
CVE-2009-0033
CVE-2011-0534
CVE-2012-0022
CVE-2012-2733
CVE-2012-3544
CVE-2012-4534
CVE-2013-4444
CVE-2014-0095
CVE-2017-6056
CVE-2016-6817
CVE-2017-5650
CVE-2011-3376
CVE-2016-9774
CVE-2016-9775
CVE-2016-0706
CVE-2014-0227
CVE-2013-4286
CVE-2014-0230
CVE-2011-2526
CVE-2016-0763
CVE-2016-6325
CVE-2005-4838
CVE-2016-0762
CVE-2009-0783
CVE-2017-7674
Patch Details
No records found
References
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
http://marc.info/?l=bugtraq&m=133469267822771&w=2
http://marc.info/?l=bugtraq&m=144498216801440&w=2
http://seclists.org/fulldisclosure/2014/Dec/23
http://secunia.com/advisories/38687
http://secunia.com/advisories/39317
http://secunia.com/advisories/44183
http://support.apple.com/kb/HT5002
http://support.apple.com/kb/HT5130
http://www.kb.cert.org/vuls/id/903934
http://www.nruns.com/_downloads/advisory28122011.pdf
http://www.ocert.org/advisories/ocert-2011-003.html
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html
http://www.redhat.com/support/errata/RHSA-2010-0119.html
http://www.securityfocus.com/archive/1/archive/1/516397/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/534161/100/0/threaded
http://www.securityfocus.com/bid/64758
http://www.vmware.com/security/advisories/VMSA-2011-0003.html
http://www.vmware.com/security/advisories/VMSA-2014-0012.html
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04851013
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722
http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0014.html
http://marc.info/?l=bugtraq&m=102631703811297&w=2
http://www.osvdb.org/4973
http://www.securityfocus.com/bid/5193
https://exchange.xforce.ibmcloud.com/vulnerabilities/9520
http://marc.info/?l=bugtraq&m=103288242014253&w=2
http://online.securityfocus.com/advisories/4758
http://www.debian.org/security/2002/dsa-170
http://www.iss.net/security_center/static/10175.php
http://www.redhat.com/support/errata/RHSA-2002-217.html
http://www.redhat.com/support/errata/RHSA-2002-218.html
http://www.securityfocus.com/bid/5786
http://archives.neohapsis.com/archives/vuln-dev/2002-q3/0482.html
http://tomcat.apache.org/security-4.html
http://www.redhat.com/support/errata/RHSA-2003-082.html
http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx
http://docs.info.apple.com/article.html?artnum=306172
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795
http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html
http://lists.vmware.com/pipermail/security-announce/2008/000003.html
http://seclists.org/lists/bugtraq/2005/Jun/0025.html
http://secunia.com/advisories/26235
http://secunia.com/advisories/26660
http://secunia.com/advisories/27037
http://secunia.com/advisories/28365
http://secunia.com/advisories/29242
http://secunia.com/advisories/30899
http://secunia.com/advisories/30908
http://secunia.com/advisories/33668
http://securitytracker.com/id?1014365
http://sunsolve.sun.com/search/document.do?assetkey=1-26-239312-1
http://support.avaya.com/elmodocs2/security/ASA-2007-206.htm
http://tomcat.apache.org/security-5.html
http://tomcat.apache.org/security-6.html
http://www.fujitsu.com/global/support/software/security/products-f/interstage-200703e.html
http://www.redhat.com/support/errata/RHSA-2007-0327.html
http://www.redhat.com/support/errata/RHSA-2007-0360.html
http://www.redhat.com/support/errata/RHSA-2008-0261.html
http://www.securiteam.com/securityreviews/5GP0220G0U.html
http://www.securityfocus.com/archive/1/archive/1/485938/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/500396/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/500412/100/0/threaded
http://www.securityfocus.com/bid/13873
http://www.securityfocus.com/bid/25159
http://www.vupen.com/english/advisories/2007/2732
http://www.vupen.com/english/advisories/2007/3087
http://www.vupen.com/english/advisories/2007/3386
http://www.vupen.com/english/advisories/2008/0065
http://www.vupen.com/english/advisories/2008/1979/references
http://www.vupen.com/english/advisories/2009/0233
http://www.watchfire.com/resources/HTTP-Request-Smuggling.pdf
http://secunia.com/advisories/17416
http://securitytracker.com/id?1015147
http://www.osvdb.org/20439
http://www.redhat.com/support/errata/RHSA-2006-0161.html
http://www.securityfocus.com/archive/1/archive/1/415782/30/0/threaded
http://www.securityfocus.com/bid/15325
http://marc.info/?l=tomcat-dev&m=110476790331536&w=2
http://marc.info/?l=tomcat-dev&m=110477195116951&w=2
http://rhn.redhat.com/errata/RHSA-2008-0630.html
http://secunia.com/advisories/13737
http://secunia.com/advisories/31493
http://securitytracker.com/id?1012793
http://www.oliverkarow.de/research/jakarta556_xss.txt
http://www.osvdb.org/12721
http://www.osvdb.org/34878
http://www.osvdb.org/34879
https://exchange.xforce.ibmcloud.com/vulnerabilities/36467
http://www.securityfocus.com/bid/28481
http://www.vupen.com/english/advisories/2007/1729
http://osvdb.org/34888
http://www.securityfocus.com/archive/1/archive/1/478491/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/478609/100/0/threaded
http://www.securityfocus.com/bid/25531
http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html
http://osvdb.org/34875
http://secunia.com/advisories/27727
http://secunia.com/advisories/30802
http://securityreason.com/securityalert/2722
http://support.apple.com/kb/HT2163
http://www.securityfocus.com/archive/1/archive/1/469067/100/0/threaded
http://www.securityfocus.com/bid/24058
http://www.vupen.com/english/advisories/2008/1981/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/34377
https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html
http://jvn.jp/jp/JVN%2316535199/index.html
http://osvdb.org/34881
http://secunia.com/advisories/25721
http://www.fujitsu.com/global/support/software/security/products-f/interstage-200704e.html
http://www.securityfocus.com/archive/1/archive/1/471719/100/0/threaded
http://www.securityfocus.com/bid/24524
http://www.securitytracker.com/id?1018269
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00008.html
http://marc.info/?l=bugtraq&m=133114899904925&w=2
http://osvdb.org/34882
http://secunia.com/advisories/29392
http://www.securityfocus.com/bid/28482
https://exchange.xforce.ibmcloud.com/vulnerabilities/34212
http://tomcat.apache.org/security-jk.html
http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
http://secunia.com/advisories/32222
http://support.apple.com/kb/HT3216
http://www.securityfocus.com/bid/31681
http://www.vupen.com/english/advisories/2008/2780
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01192554
http://jvn.jp/jp/JVN%2359851336/index.html
http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
http://osvdb.org/36417
http://secunia.com/advisories/26465
http://secunia.com/advisories/26898
http://secunia.com/advisories/27267
http://secunia.com/advisories/28317
http://securityreason.com/securityalert/3010
http://securitytracker.com/id?1018558
http://www.debian.org/security/2008/dsa-1447
http://www.redhat.com/support/errata/RHSA-2007-0871.html
http://www.securityfocus.com/archive/1/archive/1/476448/100/0/threaded
http://www.securityfocus.com/bid/25314
http://www.vupen.com/english/advisories/2007/2880
http://www.vupen.com/english/advisories/2007/3527
https://exchange.xforce.ibmcloud.com/vulnerabilities/36001
http://marc.info/?l=bugtraq&m=139344343412337&w=2
http://secunia.com/advisories/28878
http://secunia.com/advisories/28915
http://secunia.com/advisories/29711
http://secunia.com/advisories/30676
http://secunia.com/advisories/37460
http://secunia.com/advisories/57126
http://security.gentoo.org/glsa/glsa-200804-10.xml
http://securityreason.com/securityalert/3637
http://www.securityfocus.com/archive/1/archive/1/487823/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/507985/100/0/threaded
http://www.vmware.com/security/advisories/VMSA-2008-0010.html
http://www.vmware.com/security/advisories/VMSA-2009-0016.html
http://www.vupen.com/english/advisories/2008/0488
http://www.vupen.com/english/advisories/2008/1856/references
http://www.vupen.com/english/advisories/2009/3316
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html
http://jvn.jp/en/jp/JVN66905322/index.html
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000010.html
http://secunia.com/advisories/34057
http://www.securityfocus.com/archive/1/501250
http://www.securityfocus.com/bid/33913
http://www.vupen.com/english/advisories/2009/0541
https://issues.apache.org/bugzilla/show_bug.cgi?id=40771
http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
http://support.apple.com/kb/HT4077
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
http://secunia.com/advisories/35685
http://www.redhat.com/support/errata/RHSA-2011-0896.html
http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html
http://advisories.mageia.org/MGASA-2014-0148.html
http://marc.info/?l=bugtraq&m=141390017113542&w=2
http://rhn.redhat.com/errata/RHSA-2014-0343.html
http://rhn.redhat.com/errata/RHSA-2014-0344.html
http://rhn.redhat.com/errata/RHSA-2014-0345.html
http://secunia.com/advisories/57675
http://secunia.com/advisories/59036
http://secunia.com/advisories/59675
http://secunia.com/advisories/59722
http://secunia.com/advisories/59724
http://secunia.com/advisories/59733
http://secunia.com/advisories/59873
http://tomcat.apache.org/security-7.html
http://tomcat.apache.org/security-8.html
http://www-01.ibm.com/support/docview.wss?uid=swg21667883
http://www-01.ibm.com/support/docview.wss?uid=swg21677147
http://www-01.ibm.com/support/docview.wss?uid=swg21678231
http://www.debian.org/security/2016/dsa-3530
http://www.securityfocus.com/bid/65773
http://www.ubuntu.com/usn/USN-2130-1
https://bugzilla.redhat.com/show_bug.cgi?id=1069921
https://rhn.redhat.com/errata/RHSA-2014-0686.html
http://www.securityfocus.com/bid/65768
http://www.vmware.com/security/advisories/VMSA-2014-0008.html
https://bugzilla.redhat.com/show_bug.cgi?id=1069911
http://advisories.mageia.org/MGASA-2014-0110.html
http://blog.spiderlabs.com/2014/02/cve-2014-0050-exploit-with-boundaries-loops-without-boundaries.html
http://jvn.jp/en/jp/JVN14876762/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000017
http://mail-archives.apache.org/mod_mbox/commons-dev/201402.mbox/%3C52F373FC.9030907@apache.org%3E
http://marc.info/?l=bugtraq&m=143136844732487&w=2
http://packetstormsecurity.com/files/127215/VMware-Security-Advisory-2014-0007.html
http://rhn.redhat.com/errata/RHSA-2014-0252.html
http://rhn.redhat.com/errata/RHSA-2014-0253.html
http://rhn.redhat.com/errata/RHSA-2014-0400.html
http://secunia.com/advisories/57915
http://secunia.com/advisories/58075
http://secunia.com/advisories/58976
http://secunia.com/advisories/59039
http://secunia.com/advisories/59041
http://secunia.com/advisories/59183
http://secunia.com/advisories/59184
http://secunia.com/advisories/59185
http://secunia.com/advisories/59187
http://secunia.com/advisories/59232
http://secunia.com/advisories/59399
http://secunia.com/advisories/59492
http://secunia.com/advisories/59500
http://secunia.com/advisories/59725
http://secunia.com/advisories/60475
http://secunia.com/advisories/60753
http://www-01.ibm.com/support/docview.wss?uid=swg21669554
http://www-01.ibm.com/support/docview.wss?uid=swg21676091
http://www-01.ibm.com/support/docview.wss?uid=swg21676092
http://www-01.ibm.com/support/docview.wss?uid=swg21676401
http://www-01.ibm.com/support/docview.wss?uid=swg21676410
http://www-01.ibm.com/support/docview.wss?uid=swg21676853
http://www-01.ibm.com/support/docview.wss?uid=swg21677691
http://www-01.ibm.com/support/docview.wss?uid=swg21677724
http://www.debian.org/security/2014/dsa-2856
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS14-015/index.html
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS14-016/index.html
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS14-017/index.html
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-350733.htm
http://www.securityfocus.com/archive/1/archive/1/532549/100/0/threaded
http://www.securityfocus.com/bid/65400
http://www.vmware.com/security/advisories/VMSA-2014-0007.html
https://bugzilla.redhat.com/show_bug.cgi?id=1062337
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05324755
http://advisories.mageia.org/MGASA-2014-0268.html
http://linux.oracle.com/errata/ELSA-2014-0865.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150282.html
http://marc.info/?l=bugtraq&m=141017844705317&w=2
http://rhn.redhat.com/errata/RHSA-2015-0675.html
http://rhn.redhat.com/errata/RHSA-2015-0720.html
http://rhn.redhat.com/errata/RHSA-2015-0765.html
http://seclists.org/fulldisclosure/2014/May/138
http://seclists.org/fulldisclosure/2014/May/140
http://secunia.com/advisories/59121
http://secunia.com/advisories/59678
http://secunia.com/advisories/59732
http://secunia.com/advisories/59835
http://secunia.com/advisories/59849
http://secunia.com/advisories/60729
http://secunia.com/advisories/60793
http://www-01.ibm.com/support/docview.wss?uid=swg21680603
http://www-01.ibm.com/support/docview.wss?uid=swg21681528
http://www.debian.org/security/2016/dsa-3447
http://www.securityfocus.com/archive/1/532221/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/532218/100/0/threaded
http://www.securityfocus.com/bid/67668
http://www.securitytracker.com/id/1030302
http://seclists.org/fulldisclosure/2014/May/141
http://www.debian.org/security/2016/dsa-3552
http://www.securityfocus.com/bid/67669
http://www.securitytracker.com/id/1030298
http://www.ubuntu.com/usn/USN-2654-1
http://mail-archives.apache.org/mod_mbox/tomcat-announce/201505.mbox/%3C554949D1.8030904%40apache.org%3E
http://marc.info/?l=bugtraq&m=145974991225029&w=2
http://openwall.com/lists/oss-security/2015/04/10/1
http://rhn.redhat.com/errata/RHSA-2015-1622.html
http://rhn.redhat.com/errata/RHSA-2016-0595.html
http://rhn.redhat.com/errata/RHSA-2016-0596.html
http://rhn.redhat.com/errata/RHSA-2016-0597.html
http://rhn.redhat.com/errata/RHSA-2016-0598.html
http://www.securityfocus.com/bid/74475
http://www.ubuntu.com/usn/USN-2655-1
https://access.redhat.com/errata/RHSA-2015:2659
https://access.redhat.com/errata/RHSA-2015:2660
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05054964
https://issues.jboss.org/browse/JWS-219
https://issues.jboss.org/browse/JWS-220
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05320149
https://security.netapp.com/advisory/ntap-20171019-0002/
http://www.securitytracker.com/id/1037640
http://www.novell.com/linux/security/advisories/2007_15_sr.html
http://archives.neohapsis.com/archives/bugtraq/2000-07/0309.html
http://www.securityfocus.com/bid/1548
https://exchange.xforce.ibmcloud.com/vulnerabilities/5160
http://www.iss.net/security_center/static/4967.php
http://www.securityfocus.com/bid/1531
http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26date%3D2000-07-15%26msg%3DPine.SUN.3.96.1000719184401.17782A-100000@grex.cyberspace.org
http://www.securityfocus.com/bid/1532
http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26date%3D2000-07-15%26msg%3DPine.SUN.3.96.1000719235404.24004A-100000@grex.cyberspace.org
http://marc.info/?l=bugtraq&m=95371672300045&w=2
http://www.iss.net/security_center/static/4205.php
http://archives.neohapsis.com/archives/bugtraq/2001-04/0031.html
http://www.osvdb.org/5580
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTL0112-004
https://exchange.xforce.ibmcloud.com/vulnerabilities/6971
http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html
http://jakarta.apache.org/tomcat/tomcat-3.2-doc/readme
http://www.securityfocus.com/bid/2982
http://marc.info/?l=bugtraq&m=100654722925155&w=2
http://marc.info/?l=tomcat-dev&m=100658457507305&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/7599
http://archives.neohapsis.com/archives/hp/2001-q4/0062.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/42892
http://marc.info/?l=bugtraq&m=101709002410365&w=2
http://www.apachelabs.org/tomcat-dev/200108.mbox/%3C20010810000819.6350.qmail@icarus.apache.org%3E
http://www.iss.net/security_center/static/9863.php
http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0120.html
http://online.securityfocus.com/archive/1/277940
http://www.iss.net/security_center/static/9396.php
http://www.osvdb.org/5051
http://www.securityfocus.com/bid/5067
http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0095.html
http://www.iss.net/security_center/static/9339.php
http://www.securityfocus.com/bid/4995
http://issues.apache.org/bugzilla/show_bug.cgi?id=13365
http://marc.info/?l=bugtraq&m=103470282514938&w=2
http://marc.info/?l=tomcat-dev&m=103417249325526&w=2
http://www.debian.org/security/2003/dsa-225
http://www.redhat.com/support/errata/RHSA-2003-075.html
http://www.securityfocus.com/bid/6562
https://exchange.xforce.ibmcloud.com/vulnerabilities/10376
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0020.html
http://www.iss.net/security_center/static/10348.php
http://archives.neohapsis.com/archives/bugtraq/2002-04/0311.html
http://www.iss.net/security_center/static/8932.php
http://www.securityfocus.com/bid/4575
http://www.iss.net/security_center/static/9208.php
http://www.kb.cert.org/vuls/id/116963
http://www.securityfocus.com/bid/4876
http://www.securityfocus.com/bid/4877
http://www.securityfocus.com/bid/4878
http://archives.neohapsis.com/archives/bugtraq/2002-06/0225.html
http://www.iss.net/security_center/static/9394.php
http://www.securityfocus.com/bid/5054
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-04/0286.html
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-04/0297.html
http://www.securityfocus.com/bid/4557
https://exchange.xforce.ibmcloud.com/vulnerabilities/42915
http://archives.neohapsis.com/archives/bugtraq/2002-12/0045.html
http://www.securityfocus.com/bid/6320
https://exchange.xforce.ibmcloud.com/vulnerabilities/10771
http://marc.info/?l=bugtraq&m=104394568616290&w=2
http://secunia.com/advisories/7972
http://secunia.com/advisories/7977
http://www.ciac.org/ciac/bulletins/n-060.shtml
http://www.debian.org/security/2003/dsa-246
http://www.securityfocus.com/advisories/5111
http://www.securityfocus.com/bid/6721
https://exchange.xforce.ibmcloud.com/vulnerabilities/11194
http://www.securityfocus.com/bid/6722
https://exchange.xforce.ibmcloud.com/vulnerabilities/11195
http://www.osvdb.org/9203
http://www.osvdb.org/9204
http://www.securityfocus.com/bid/6720
https://exchange.xforce.ibmcloud.com/vulnerabilities/11196
https://exchange.xforce.ibmcloud.com/vulnerabilities/12102
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=215506
http://www.debian.org/security/2003/dsa-395
http://www.securityfocus.com/bid/8824
https://exchange.xforce.ibmcloud.com/vulnerabilities/13429
http://www.hitachi-support.com/security_e/vuls_e/HS05-006_e/index-e.html
http://www.kb.cert.org/vuls/id/204710
http://www.kb.cert.org/vuls/id/JGEI-6A2LEF
http://www.securityfocus.com/bid/12795
https://exchange.xforce.ibmcloud.com/vulnerabilities/19681
http://www.securityfocus.com/archive/1/485938/100/0/threaded
http://www.securityfocus.com/archive/1/500396/100/0/threaded
http://www.securityfocus.com/archive/1/500412/100/0/threaded
http://jvn.jp/jp/JVN%2379314822/index.html
http://secunia.com/advisories/17019
http://www.hitachi-support.com/security_e/vuls_e/HS05-019_e/01-e.html
http://www.securityfocus.com/bid/15003
http://www.securityfocus.com/archive/1/415782/30/0/threaded
http://osvdb.org/ref/20/20033-tomcat-dos-path_disclosure.txt
http://www.osvdb.org/20033
http://www.securityfocus.com/bid/28484
https://exchange.xforce.ibmcloud.com/vulnerabilities/42914
http://www.securityfocus.com/bid/28483
http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0467.html
http://secunia.com/advisories/25212
http://secunia.com/advisories/37297
http://securitytracker.com/id?1016576
http://www.securenetwork.it/ricerca/advisory/download/SN-2009-02.txt
http://www.securityfocus.com/archive/1/archive/1/468048/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/507729/100/0/threaded
http://www.securityfocus.com/bid/19106
http://www.vupen.com/english/advisories/2007/1727
https://exchange.xforce.ibmcloud.com/vulnerabilities/27902
https://exchange.xforce.ibmcloud.com/vulnerabilities/34183
http://issues.apache.org/bugzilla/show_bug.cgi?id=38859
http://www.securityfocus.com/bid/28477
http://secunia.com/advisories/24732
http://secunia.com/advisories/25106
http://secunia.com/advisories/25280
http://security.gentoo.org/glsa/glsa-200705-03.xml
http://securityreason.com/securityalert/2446
http://www.fujitsu.com/global/support/software/security/products-f/interstage-200702e.html
http://www.securityfocus.com/archive/1/archive/1/462791/100/0/threaded
http://www.securityfocus.com/bid/22960
http://www.vupen.com/english/advisories/2007/0975
https://exchange.xforce.ibmcloud.com/vulnerabilities/32988
http://osvdb.org/36080
http://secunia.com/advisories/26076
http://securityreason.com/securityalert/2804
http://www.redhat.com/support/errata/RHSA-2007-0569.html
http://www.securityfocus.com/archive/1/archive/1/471351/100/0/threaded
http://www.securityfocus.com/bid/24476
http://www.securitytracker.com/id?1018245
http://www.vupen.com/english/advisories/2007/2213
https://exchange.xforce.ibmcloud.com/vulnerabilities/34869
http://jvn.jp/jp/JVN%2307100457/index.html
http://secunia.com/advisories/25678
http://secunia.com/advisories/28549
http://securityreason.com/securityalert/2813
http://www.debian.org/security/2008/dsa-1468
http://www.osvdb.org/36079
http://www.securityfocus.com/archive/1/archive/1/471357/100/0/threaded
http://www.securityfocus.com/bid/24475
https://exchange.xforce.ibmcloud.com/vulnerabilities/34868
http://secunia.com/advisories/26466
http://secunia.com/advisories/28361
http://secunia.com/advisories/36486
http://securitytracker.com/id?1018556
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ55562
http://www.debian.org/security/2008/dsa-1453
http://www.kb.cert.org/vuls/id/993544
http://www.redhat.com/support/errata/RHSA-2007-0950.html
http://www.redhat.com/support/errata/RHSA-2008-0195.html
http://www.securityfocus.com/archive/1/archive/1/476442/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/476466/100/0/threaded
http://www.securityfocus.com/bid/25316
http://www.vupen.com/english/advisories/2007/2902
https://exchange.xforce.ibmcloud.com/vulnerabilities/36006
http://osvdb.org/39000
http://seclists.org/fulldisclosure/2007/Jul/0448.html
http://securityreason.com/securityalert/2918
http://www.kb.cert.org/vuls/id/862600
http://www.securityfocus.com/archive/1/archive/1/474413/100/0/threaded
http://www.securityfocus.com/bid/24999
http://www.vupen.com/english/advisories/2007/2618
https://exchange.xforce.ibmcloud.com/vulnerabilities/35536
http://osvdb.org/39035
http://securityreason.com/securityalert/2971
http://securitytracker.com/id?1018503
http://tomcat.apache.org/security-3.html
http://www.securityfocus.com/archive/1/archive/1/475321/100/0/threaded
http://www.securityfocus.com/bid/25174
http://securityreason.com/securityalert/3011
http://securitytracker.com/id?1018557
http://www.securityfocus.com/archive/1/archive/1/476444/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/35999
http://archives.neohapsis.com/archives/bugtraq/2007-09/0040.html
http://osvdb.org/41029
http://securityreason.com/securityalert/3094
http://jvn.jp/jp/JVN%2309470767/index.html
http://secunia.com/advisories/28884
http://secunia.com/advisories/32036
http://secunia.com/advisories/33330
http://securityreason.com/securityalert/3636
http://www.redhat.com/docs/en-US/JBoss_Enterprise_Application_Platform/4.2.0.cp08/html-single/Release_Notes/index.html
http://www.securityfocus.com/archive/1/archive/1/487822/100/0/threaded
http://www.securityfocus.com/bid/27706
http://www.vupen.com/english/advisories/2008/2690
https://bugzilla.redhat.com/show_bug.cgi?id=532111
http://osvdb.org/39833
http://secunia.com/advisories/28274
http://secunia.com/advisories/29313
http://secunia.com/advisories/32120
http://secunia.com/advisories/32266
http://securityreason.com/securityalert/3485
http://support.avaya.com/elmodocs2/security/ASA-2008-401.htm
http://www.redhat.com/support/errata/RHSA-2008-0042.html
http://www.redhat.com/support/errata/RHSA-2008-0831.html
http://www.redhat.com/support/errata/RHSA-2008-0832.html
http://www.redhat.com/support/errata/RHSA-2008-0833.html
http://www.redhat.com/support/errata/RHSA-2008-0834.html
http://www.redhat.com/support/errata/RHSA-2008-0862.html
http://www.securityfocus.com/archive/1/archive/1/485481/100/0/threaded
http://www.securityfocus.com/bid/27006
http://www.vupen.com/english/advisories/2008/0013
http://www.vupen.com/english/advisories/2008/2823
https://exchange.xforce.ibmcloud.com/vulnerabilities/39201
http://issues.apache.org/jira/browse/GERONIMO-3549
http://mail-archives.apache.org/mod_mbox/tomcat-users/200710.mbox/%3C47135C2D.1000705@apache.org%3E
http://marc.info/?l=full-disclosure&m=119239530508382
http://secunia.com/advisories/27398
http://secunia.com/advisories/27446
http://secunia.com/advisories/27481
http://www.securityfocus.com/bid/26070
http://www.securitytracker.com/id?1018864
http://www.vupen.com/english/advisories/2007/3622
http://www.vupen.com/english/advisories/2007/3671
http://www.vupen.com/english/advisories/2007/3674
https://exchange.xforce.ibmcloud.com/vulnerabilities/37243
https://www.exploit-db.com/exploits/4530
http://secunia.com/advisories/28834
http://securityreason.com/securityalert/3638
http://www.securityfocus.com/archive/1/archive/1/487812/100/0/threaded
http://www.securityfocus.com/bid/27703
http://issues.apache.org/bugzilla/show_bug.cgi?id=41217
http://secunia.com/advisories/28552
http://security-tracker.debian.net/tracker/CVE-2008-0128
http://www.securityfocus.com/bid/27365
http://www.vupen.com/english/advisories/2008/0192
https://exchange.xforce.ibmcloud.com/vulnerabilities/39804
http://community.ca.com/blogs/casecurityresponseblog/archive/2009/06/15/ca20090615-02-ca-service-desk-tomcat-cross-site-scripting-vulnerability.aspx
http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html
http://marc.info/?l=bugtraq&m=123376588623823&w=2
http://secunia.com/advisories/31379
http://secunia.com/advisories/31381
http://secunia.com/advisories/31639
http://secunia.com/advisories/31865
http://secunia.com/advisories/31891
http://secunia.com/advisories/31982
http://secunia.com/advisories/33797
http://secunia.com/advisories/33999
http://secunia.com/advisories/34013
http://secunia.com/advisories/35474
http://secunia.com/advisories/36108
http://securityreason.com/securityalert/4098
http://www.redhat.com/support/errata/RHSA-2008-0648.html
http://www.redhat.com/support/errata/RHSA-2008-0864.html
http://www.securityfocus.com/archive/1/archive/1/495021/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/504351/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/505556/100/0/threaded
http://www.securityfocus.com/bid/30496
http://www.securitytracker.com/id?1020622
http://www.vmware.com/security/advisories/VMSA-2009-0002.html
http://www.vupen.com/english/advisories/2008/2305
http://www.vupen.com/english/advisories/2009/0320
http://www.vupen.com/english/advisories/2009/0503
http://www.vupen.com/english/advisories/2009/1609
http://www.vupen.com/english/advisories/2009/2194
https://exchange.xforce.ibmcloud.com/vulnerabilities/44155
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=209500
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=214095
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00712.html
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00859.html
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00889.html
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html
http://marc.info/?l=tomcat-user&m=121244319501278&w=2
http://secunia.com/advisories/30500
http://secunia.com/advisories/30592
http://secunia.com/advisories/30967
http://www.debian.org/security/2008/dsa-1593
http://www.securityfocus.com/archive/1/archive/1/492958/100/0/threaded
http://www.securityfocus.com/bid/29502
http://www.securitytracker.com/id?1020624
http://www.vupen.com/english/advisories/2008/1725
https://exchange.xforce.ibmcloud.com/vulnerabilities/42816
http://mail-archives.apache.org/mod_mbox/ode-user/200908.mbox/%3Cfbdc6a970908072141w20a7a9d9ka1f896ad8073dffb@mail.gmail.com%3E
http://marc.info/?l=apache-announce&m=124972618803216&w=2
http://secunia.com/advisories/35393
http://secunia.com/advisories/36249
http://securityreason.com/securityalert/4099
http://www.fujitsu.com/global/support/software/security/products-f/interstage-200902e.html
http://www.securityfocus.com/archive/1/archive/1/495022/100/0/threaded
http://www.securityfocus.com/bid/30494
http://www.securitytracker.com/id?1020623
http://www.vupen.com/english/advisories/2009/1535
http://www.vupen.com/english/advisories/2009/2215
https://exchange.xforce.ibmcloud.com/vulnerabilities/44156
http://securityreason.com/securityalert/4148
http://www.kb.cert.org/vuls/id/343355
http://www.securityfocus.com/archive/1/archive/1/495318/100/0/threaded
http://www.securityfocus.com/bid/30633
http://www.securitytracker.com/id?1020665
http://www.vupen.com/english/advisories/2008/2343
https://exchange.xforce.ibmcloud.com/vulnerabilities/44411
https://www.exploit-db.com/exploits/6229
http://jvn.jp/en/jp/JVN30732239/index.html
http://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-000069.html
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00012.html
http://secunia.com/advisories/32213
http://secunia.com/advisories/32234
http://secunia.com/advisories/32398
http://secunia.com/advisories/35684
http://securityreason.com/securityalert/4396
http://www.fujitsu.com/global/support/software/security/products-f/interstage-200806e.html
http://www.nec.co.jp/security-info/secinfo/nv09-006.html
http://www.securityfocus.com/archive/1/archive/1/497220/100/0/threaded
http://www.securityfocus.com/bid/31698
http://www.securitytracker.com/id?1021039
http://www.vupen.com/english/advisories/2008/2793
http://www.vupen.com/english/advisories/2008/2800
http://www.vupen.com/english/advisories/2009/1818
https://exchange.xforce.ibmcloud.com/vulnerabilities/45791
https://issues.apache.org/bugzilla/show_bug.cgi?id=25835
http://jvn.jp/en/jp/JVN63832775/index.html
http://marc.info/?l=bugtraq&m=127420533226623&w=2
http://marc.info/?l=bugtraq&m=129070310906557&w=2
http://marc.info/?l=bugtraq&m=136485229118404&w=2
http://secunia.com/advisories/35788
http://secunia.com/advisories/42368
http://sunsolve.sun.com/search/document.do?assetkey=1-26-263529-1
http://www.debian.org/security/2011/dsa-2207
http://www.securityfocus.com/archive/1/archive/1/504170/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/504202/100/0/threaded
http://www.securityfocus.com/bid/35263
http://www.vupen.com/english/advisories/2009/1520
http://www.vupen.com/english/advisories/2009/1856
http://www.vupen.com/english/advisories/2010/3056
https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01156.html
https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01216.html
https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01246.html
http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html
http://mail-archives.apache.org/mod_mbox/www-announce/200904.mbox/%3C49DBBAC0.2080400@apache.org%3E
http://marc.info/?l=tomcat-dev&m=123913700700879
http://secunia.com/advisories/29283
http://secunia.com/advisories/34621
http://secunia.com/advisories/35537
http://securitytracker.com/id?1022001
http://sunsolve.sun.com/search/document.do?assetkey=1-26-262468-1
http://svn.eu.apache.org/viewvc?view=rev&revision=702540
http://tomcat.apache.org/connectors-doc/miscellaneous/changelog.html
http://www.debian.org/security/2009/dsa-1810
http://www.openwall.com/lists/oss-security/2009/04/08/10
http://www.redhat.com/support/errata/RHSA-2009-0446.html
http://www.securityfocus.com/archive/1/archive/1/502530/100/0/threaded
http://www.securityfocus.com/bid/34412
http://www.vupen.com/english/advisories/2009/0973
https://bugzilla.redhat.com/show_bug.cgi?id=490201
http://jvn.jp/en/jp/JVN87272440/index.html
http://secunia.com/advisories/35326
http://secunia.com/advisories/35344
http://securitytracker.com/id?1022331
http://www.securityfocus.com/archive/1/archive/1/504044/100/0/threaded
http://www.securityfocus.com/bid/35193
http://www.vupen.com/english/advisories/2009/1496
https://exchange.xforce.ibmcloud.com/vulnerabilities/50928
http://securitytracker.com/id?1022332
http://www.securityfocus.com/archive/1/archive/1/504045/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/504108/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/504125/100/0/threaded
http://www.securityfocus.com/bid/35196
https://exchange.xforce.ibmcloud.com/vulnerabilities/50930
http://www.securityfocus.com/archive/1/archive/1/501538/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/49213
http://www.securityfocus.com/archive/1/archive/1/504090/100/0/threaded
http://www.securityfocus.com/bid/35416
http://www.securitytracker.com/id?1022336
https://exchange.xforce.ibmcloud.com/vulnerabilities/51195
https://issues.apache.org/bugzilla/show_bug.cgi?id=29936
https://issues.apache.org/bugzilla/show_bug.cgi?id=45933
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02241113
http://lists.opensuse.org/opensuse-updates/2012-12/msg00089.html
http://lists.opensuse.org/opensuse-updates/2012-12/msg00090.html
http://lists.opensuse.org/opensuse-updates/2013-01/msg00037.html
http://secunia.com/advisories/38316
http://secunia.com/advisories/38346
http://secunia.com/advisories/38541
http://secunia.com/advisories/40330
http://secunia.com/advisories/40813
http://secunia.com/advisories/43310
http://securitytracker.com/id?1023505
http://ubuntu.com/usn/usn-899-1
http://www.redhat.com/support/errata/RHSA-2010-0580.html
http://www.redhat.com/support/errata/RHSA-2010-0582.html
http://www.securityfocus.com/archive/1/archive/1/509148/100/0/threaded
http://www.securityfocus.com/bid/37944
http://www.vupen.com/english/advisories/2010/0213
http://www.vupen.com/english/advisories/2010/1559
http://www.vupen.com/english/advisories/2010/1986
https://exchange.xforce.ibmcloud.com/vulnerabilities/55855
https://bugzilla.redhat.com/show_bug.cgi?id=616717
http://securitytracker.com/id?1023503
http://www.securityfocus.com/archive/1/archive/1/509151/100/0/threaded
http://www.securityfocus.com/bid/37942
https://exchange.xforce.ibmcloud.com/vulnerabilities/55856
http://securitytracker.com/id?1023504
http://www.securityfocus.com/archive/1/archive/1/509150/100/0/threaded
http://www.securityfocus.com/bid/37945
https://exchange.xforce.ibmcloud.com/vulnerabilities/55857
http://markmail.org/thread/wfu4nff5chvkb6xp
http://www.securityfocus.com/archive/1/archive/1/507720/100/0/threaded
http://www.securityfocus.com/bid/36954
http://www.securitytracker.com/id?1023146
http://www.vupen.com/english/advisories/2009/3185
https://exchange.xforce.ibmcloud.com/vulnerabilities/54182
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
http://secunia.com/advisories/39574
http://www.redhat.com/support/errata/RHSA-2011-0897.html
http://www.securityfocus.com/archive/1/archive/1/510879/100/0/threaded
http://www.securityfocus.com/bid/39635
http://www.vupen.com/english/advisories/2010/0980
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050207.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050214.html
http://secunia.com/advisories/41025
http://secunia.com/advisories/42079
http://secunia.com/advisories/42454
http://securitytracker.com/id?1024180
http://www.novell.com/support/viewContent.do?externalId=7007274
http://www.novell.com/support/viewContent.do?externalId=7007275
http://www.redhat.com/support/errata/RHSA-2010-0581.html
http://www.redhat.com/support/errata/RHSA-2010-0583.html
http://www.securityfocus.com/archive/1/archive/1/512272/100/0/threaded
http://www.securityfocus.com/bid/41544
http://www.vupen.com/english/advisories/2010/2868
https://exchange.xforce.ibmcloud.com/vulnerabilities/60264
http://marc.info/?l=bugtraq&m=130168502603566&w=2
http://marc.info/?l=bugtraq&m=132215163318824&w=2
http://secunia.com/advisories/43192
http://secunia.com/advisories/45022
http://securityreason.com/securityalert/8072
http://www.debian.org/security/2011/dsa-2160
http://www.redhat.com/support/errata/RHSA-2011-0791.html
http://www.redhat.com/support/errata/RHSA-2011-1845.html
http://www.securityfocus.com/archive/1/archive/1/516211/100/0/threaded
http://www.securityfocus.com/bid/46177
http://www.securitytracker.com/id?1025025
https://exchange.xforce.ibmcloud.com/vulnerabilities/65159
http://archives.neohapsis.com/archives/fulldisclosure/2010-11/0285.html
http://secunia.com/advisories/42337
http://secunia.com/advisories/43019
http://securitytracker.com/id?1024764
http://www.securityfocus.com/archive/1/archive/1/514866/100/0/threaded
http://www.securityfocus.com/bid/45015
http://www.ubuntu.com/usn/USN-1048-1
http://www.vupen.com/english/advisories/2010/3047
http://www.vupen.com/english/advisories/2011/0203
https://bugzilla.redhat.com/show_bug.cgi?id=656246
https://exchange.xforce.ibmcloud.com/vulnerabilities/63422
http://securityreason.com/securityalert/8093
http://tomcat.apache.org/security-5.html#Fixed_in_Apache_Tomcat_5.5.32
http://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.30
http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.6_%28released_14_Jan_2011%29
http://www.securityfocus.com/archive/1/516209/30/90/threaded
http://www.securityfocus.com/bid/46174
http://www.securitytracker.com/id?1025026
http://www.vupen.com/english/advisories/2011/0376
https://bugzilla.redhat.com/show_bug.cgi?id=675786
http://osvdb.org/70809
http://securityreason.com/securityalert/8074
http://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.32
http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.8_%28released_5_Feb_2011%29
http://www.securityfocus.com/archive/1/archive/1/516214/100/0/threaded
http://www.securityfocus.com/bid/46164
http://www.securitytracker.com/id?1025027
http://www.vupen.com/english/advisories/2011/0293
https://exchange.xforce.ibmcloud.com/vulnerabilities/65162
http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106@apache.org%3E
http://markmail.org/message/lzx5273wsgl5pob6
http://markmail.org/message/yzmyn44f5aetmm2r
http://secunia.com/advisories/43684
http://www.osvdb.org/71027
http://www.securityfocus.com/archive/1/archive/1/517013/100/0/threaded
http://www.securityfocus.com/bid/46685
http://www.securitytracker.com/id?1025215
http://www.vupen.com/english/advisories/2011/0563
https://exchange.xforce.ibmcloud.com/vulnerabilities/65971
http://seclists.org/fulldisclosure/2011/Apr/96
http://securityreason.com/securityalert/8187
http://www.securityfocus.com/archive/1/archive/1/517362/100/0/threaded
http://www.securityfocus.com/bid/47196
https://exchange.xforce.ibmcloud.com/vulnerabilities/66675
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00002.html
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00006.html
http://rhn.redhat.com/errata/RHSA-2012-0074.html
http://rhn.redhat.com/errata/RHSA-2012-0075.html
http://rhn.redhat.com/errata/RHSA-2012-0076.html
http://www.debian.org/security/2012/dsa-2401
http://marc.info/?l=tomcat-user&m=129966773405409&w=2
http://securityreason.com/securityalert/8131
https://exchange.xforce.ibmcloud.com/vulnerabilities/66154
http://seclists.org/fulldisclosure/2011/Apr/97
http://securityreason.com/securityalert/8188
http://www.securityfocus.com/archive/1/517363
http://www.securityfocus.com/bid/47199
http://www.securitytracker.com/id?1025303
http://www.vupen.com/english/advisories/2011/0894
https://exchange.xforce.ibmcloud.com/vulnerabilities/66676
https://issues.apache.org/bugzilla/show_bug.cgi?id=50957
http://mail-archives.apache.org/mod_mbox/www-announce/201105.mbox/%3C4DD26E30.2060103@apache.org%3E
http://securityreason.com/securityalert/8256
http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.14_%28released_12_May_2011%29
http://www.securityfocus.com/archive/1/archive/1/518032/100/0/threaded
http://www.securityfocus.com/bid/47886
http://www.vupen.com/english/advisories/2011/1255
https://exchange.xforce.ibmcloud.com/vulnerabilities/67515
http://secunia.com/advisories/44981
http://secunia.com/advisories/48308
http://securitytracker.com/id?1025712
http://www.osvdb.org/73429
http://www.securityfocus.com/bid/48456
https://bugzilla.redhat.com/show_bug.cgi?id=717013
https://exchange.xforce.ibmcloud.com/vulnerabilities/68238
http://securitytracker.com/id?1025924
http://www.securityfocus.com/bid/49147
https://issues.apache.org/bugzilla/show_bug.cgi?id=51395
http://osvdb.org/73797
http://osvdb.org/73798
http://secunia.com/advisories/45232
http://www.securityfocus.com/archive/1/archive/1/518889/100/0/threaded
http://www.securityfocus.com/bid/48667
http://www.securitytracker.com/id?1025788
https://bugzilla.redhat.com/show_bug.cgi?id=720948
https://exchange.xforce.ibmcloud.com/vulnerabilities/68541
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00024.html
http://mail-archives.apache.org/mod_mbox/commons-dev/201108.mbox/%3C4E451B2B.9090108@apache.org%3E
http://mail-archives.apache.org/mod_mbox/tomcat-announce/201108.mbox/%3C4E45221D.1020306@apache.org%3E
http://people.apache.org/~markt/patches/2011-08-12-cve2011-2729-tc5.patch
http://secunia.com/advisories/46030
http://securitytracker.com/id?1025925
http://www.redhat.com/support/errata/RHSA-2011-1291.html
http://www.redhat.com/support/errata/RHSA-2011-1292.html
http://www.securityfocus.com/archive/1/archive/1/519263/100/0/threaded
http://www.securityfocus.com/bid/49143
https://bugzilla.redhat.com/show_bug.cgi?id=730400
https://exchange.xforce.ibmcloud.com/vulnerabilities/69161
https://issues.apache.org/jira/browse/DAEMON-214
http://secunia.com/advisories/45748
http://secunia.com/advisories/49094
http://securityreason.com/securityalert/8362
http://www.securityfocus.com/archive/1/archive/1/519466/100/0/threaded
http://www.securityfocus.com/bid/49353
http://www.securitytracker.com/id?1025993
https://exchange.xforce.ibmcloud.com/vulnerabilities/69472
https://issues.apache.org/bugzilla/show_bug.cgi?id=51698
http://www.securityfocus.com/bid/50603
http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106@apache.org%3e
http://marc.info/?l=bugtraq&m=132871655717248&w=2
http://marc.info/?l=bugtraq&m=133294394108746&w=2
http://secunia.com/advisories/48549
http://secunia.com/advisories/48790
http://secunia.com/advisories/48791
http://secunia.com/advisories/54971
http://secunia.com/advisories/55115
http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
http://www.securityfocus.com/bid/51200
https://bugzilla.redhat.com/show_bug.cgi?id=750521
https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py
http://archives.neohapsis.com/archives/bugtraq/2012-01/0112.html
http://rhn.redhat.com/errata/RHSA-2012-1331.html
http://secunia.com/advisories/48213
http://secunia.com/advisories/50863
http://www.securityfocus.com/bid/51447
https://exchange.xforce.ibmcloud.com/vulnerabilities/72425
http://marc.info/?l=bugtraq&m=136612293908376&w=2
http://secunia.com/advisories/51371
http://www.securityfocus.com/bid/56402
http://www.securitytracker.com/id?1027729
http://www.ubuntu.com/usn/USN-1637-1
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03748878
http://archives.neohapsis.com/archives/bugtraq/2013-05/0042.html
http://www.securityfocus.com/bid/59797
http://www.ubuntu.com/usn/USN-1841-1
http://archives.neohapsis.com/archives/bugtraq/2012-12/0044.html
http://rhn.redhat.com/errata/RHSA-2013-0004.html
http://rhn.redhat.com/errata/RHSA-2013-0005.html
http://rhn.redhat.com/errata/RHSA-2013-0146.html
http://rhn.redhat.com/errata/RHSA-2013-0147.html
http://rhn.redhat.com/errata/RHSA-2013-0151.html
http://rhn.redhat.com/errata/RHSA-2013-0157.html
http://rhn.redhat.com/errata/RHSA-2013-0158.html
http://rhn.redhat.com/errata/RHSA-2013-0162.html
http://rhn.redhat.com/errata/RHSA-2013-0163.html
http://rhn.redhat.com/errata/RHSA-2013-0164.html
http://rhn.redhat.com/errata/RHSA-2013-0191.html
http://rhn.redhat.com/errata/RHSA-2013-0192.html
http://rhn.redhat.com/errata/RHSA-2013-0194.html
http://rhn.redhat.com/errata/RHSA-2013-0195.html
http://rhn.redhat.com/errata/RHSA-2013-0196.html
http://rhn.redhat.com/errata/RHSA-2013-0198.html
http://rhn.redhat.com/errata/RHSA-2013-0221.html
http://rhn.redhat.com/errata/RHSA-2013-0235.html
http://rhn.redhat.com/errata/RHSA-2013-0623.html
http://rhn.redhat.com/errata/RHSA-2013-0640.html
http://rhn.redhat.com/errata/RHSA-2013-0641.html
http://rhn.redhat.com/errata/RHSA-2013-0642.html
http://secunia.com/advisories/51984
http://secunia.com/advisories/52054
http://www.securityfocus.com/bid/56812
http://www.securitytracker.com/id?1027833
http://www.ubuntu.com/usn/USN-1685-1
http://archives.neohapsis.com/archives/bugtraq/2012-12/0045.html
http://lists.opensuse.org/opensuse-updates/2013-01/msg00051.html
http://lists.opensuse.org/opensuse-updates/2013-01/msg00080.html
http://rhn.redhat.com/errata/RHSA-2013-0267.html
http://rhn.redhat.com/errata/RHSA-2013-0268.html
http://rhn.redhat.com/errata/RHSA-2013-0647.html
http://rhn.redhat.com/errata/RHSA-2013-0648.html
http://rhn.redhat.com/errata/RHSA-2013-1853.html
http://www.securityfocus.com/bid/56814
http://www.securitytracker.com/id?1027834
http://archives.neohapsis.com/archives/bugtraq/2012-12/0043.html
http://lists.opensuse.org/opensuse-updates/2013-01/msg00061.html
http://www.securityfocus.com/bid/56813
http://www.securitytracker.com/id?1027836
https://issues.apache.org/bugzilla/show_bug.cgi?id=52858
http://captainholly.wordpress.com/2009/06/19/slowloris-vs-tomcat/
http://openwall.com/lists/oss-security/2012/11/26/2
http://tomcat.10.n6.nabble.com/How-does-Tomcat-handle-a-slow-HTTP-DoS-tc2147776.html
http://tomcat.10.n6.nabble.com/How-does-Tomcat-handle-a-slow-HTTP-DoS-tc2147779.html
http://www.securityfocus.com/bid/56686
https://bugzilla.redhat.com/show_bug.cgi?id=880011
https://exchange.xforce.ibmcloud.com/vulnerabilities/80317
http://rhn.redhat.com/errata/RHSA-2013-0629.html
http://rhn.redhat.com/errata/RHSA-2013-0631.html
http://rhn.redhat.com/errata/RHSA-2013-0632.html
http://rhn.redhat.com/errata/RHSA-2013-0726.html
http://www-01.ibm.com/support/docview.wss?uid=swg21626891
http://www.securityfocus.com/bid/56403
https://exchange.xforce.ibmcloud.com/vulnerabilities/80408
https://exchange.xforce.ibmcloud.com/vulnerabilities/80407
https://exchange.xforce.ibmcloud.com/vulnerabilities/79809
http://www.openwall.com/lists/oss-security/2013/02/23/5
https://bugzilla.redhat.com/show_bug.cgi?id=924841
http://archives.neohapsis.com/archives/bugtraq/2013-05/0041.html
http://rhn.redhat.com/errata/RHSA-2013-0833.html
http://rhn.redhat.com/errata/RHSA-2013-0834.html
http://rhn.redhat.com/errata/RHSA-2013-0839.html
http://rhn.redhat.com/errata/RHSA-2013-0964.html
http://www.securityfocus.com/bid/59799
http://archives.neohapsis.com/archives/bugtraq/2013-05/0040.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105855.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105886.html
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106342.html
http://lists.opensuse.org/opensuse-updates/2013-08/msg00013.html
http://marc.info/?l=bugtraq&m=139344248911289&w=2
http://www.securityfocus.com/bid/59798
https://issues.apache.org/bugzilla/show_bug.cgi?id=54178
http://openwall.com/lists/oss-security/2014/10/24/12
http://rhn.redhat.com/errata/RHSA-2013-1193.html
http://rhn.redhat.com/errata/RHSA-2013-1194.html
http://www.openwall.com/lists/oss-security/2013/09/05/4
http://www.securityfocus.com/bid/65767
https://bugzilla.redhat.com/show_bug.cgi?id=1069905
http://archives.neohapsis.com/archives/bugtraq/2014-09/0075.html
http://www.securityfocus.com/bid/69728
http://www.securitytracker.com/id/1030834
http://www.webapp-security.com/wp-content/uploads/2013/11/Apache-Tomcat-5.5.25-CSRF-Vulnerabilities.txt
http://www.securityfocus.com/bid/65769
https://bugzilla.redhat.com/show_bug.cgi?id=1069919
http://secunia.com/advisories/59616
http://www.novell.com/support/kb/doc.php?id=7010166
http://www.securityfocus.com/bid/67671
http://seclists.org/fulldisclosure/2014/May/134
http://www.securityfocus.com/bid/67673
http://www.securitytracker.com/id/1030300
http://seclists.org/fulldisclosure/2014/May/135
http://www.securityfocus.com/bid/67667
http://www.securitytracker.com/id/1030301
http://advisories.mageia.org/MGASA-2015-0081.html
http://archives.neohapsis.com/archives/bugtraq/2015-02/0067.html
http://marc.info/?l=bugtraq&m=143393515412274&w=2
http://marc.info/?l=bugtraq&m=143403519711434&w=2
http://rhn.redhat.com/errata/RHSA-2015-0983.html
http://rhn.redhat.com/errata/RHSA-2015-0991.html
http://www.securityfocus.com/bid/72717
http://www.securitytracker.com/id/1032791
https://bugzilla.redhat.com/show_bug.cgi?id=1109196
https://source.jboss.org/changelog/JBossWeb?cs=2455
http://rhn.redhat.com/errata/RHSA-2016-0492.html
http://rhn.redhat.com/errata/RHSA-2016-2046.html
http://www.debian.org/security/2015/dsa-3428
http://www.securityfocus.com/bid/74665
http://www.securitytracker.com/id/1032330
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00047.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00069.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00082.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00085.html
http://packetstormsecurity.com/files/135883/Apache-Tomcat-Limited-Directory-Traversal.html
http://rhn.redhat.com/errata/RHSA-2016-1435.html
http://rhn.redhat.com/errata/RHSA-2016-2045.html
http://rhn.redhat.com/errata/RHSA-2016-2599.html
http://seclists.org/bugtraq/2016/Feb/149
http://www.debian.org/security/2016/dsa-3609
http://www.securityfocus.com/bid/83329
http://www.securitytracker.com/id/1035070
http://www.ubuntu.com/usn/USN-3024-1
https://access.redhat.com/errata/RHSA-2016:1432
https://access.redhat.com/errata/RHSA-2016:1433
https://access.redhat.com/errata/RHSA-2016:1434
https://bto.bluecoat.com/security-advisory/sa118
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150442
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158626
https://security.gentoo.org/glsa/201705-09
http://packetstormsecurity.com/files/135892/Apache-Tomcat-Directory-Disclosure.html
http://seclists.org/bugtraq/2016/Feb/146
http://seclists.org/fulldisclosure/2016/Feb/122
http://tomcat.apache.org/security-9.html
http://www.qcsec.com/blog/CVE-2015-5345-apache-tomcat-vulnerability.html
http://www.securityfocus.com/bid/83328
http://www.securitytracker.com/id/1035071
https://access.redhat.com/errata/RHSA-2016:1087
https://access.redhat.com/errata/RHSA-2016:1088
https://bz.apache.org/bugzilla/show_bug.cgi?id=58765
https://kc.mcafee.com/corporate/index?page=content&id=SB10156
http://packetstormsecurity.com/files/135890/Apache-Tomcat-Session-Fixation.html
http://rhn.redhat.com/errata/RHSA-2016-2807.html
http://rhn.redhat.com/errata/RHSA-2016-2808.html
http://seclists.org/bugtraq/2016/Feb/143
http://www.securityfocus.com/bid/83323
http://www.securitytracker.com/id/1035069
https://bz.apache.org/bugzilla/show_bug.cgi?id=58809
http://packetstormsecurity.com/files/135882/Apache-Tomcat-CSRF-Token-Leak.html
http://seclists.org/bugtraq/2016/Feb/148
http://www.securityfocus.com/bid/83330
https://softwaresupport.hpe.com/document/-/facetsearch/document/KM02978021
http://seclists.org/bugtraq/2016/Feb/144
http://www.securityfocus.com/bid/83324
http://seclists.org/bugtraq/2016/Feb/145
http://www.securityfocus.com/bid/83327
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179356.html
http://seclists.org/bugtraq/2016/Feb/147
http://www.securityfocus.com/bid/83326
http://legalhackers.com/advisories/Tomcat-DebPkgs-Root-Privilege-Escalation-Exploit-CVE-2016-1240.html
http://rhn.redhat.com/errata/RHSA-2017-0457.html
http://www.debian.org/security/2016/dsa-3669
http://www.debian.org/security/2016/dsa-3670
http://www.securityfocus.com/archive/1/archive/1/539519/100/0/threaded
http://www.securityfocus.com/bid/93263
http://www.securitytracker.com/id/1036845
http://www.ubuntu.com/usn/USN-3081-1
https://access.redhat.com/errata/RHSA-2017:0455
https://access.redhat.com/errata/RHSA-2017:0456
https://www.exploit-db.com/exploits/40450/
http://jvn.jp/en/jp/JVN89379547/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2016-000121
http://lists.opensuse.org/opensuse-updates/2016-09/msg00025.html
http://mail-archives.apache.org/mod_mbox/commons-dev/201606.mbox/%3CCAF8HOZ%2BPq2QH8RnxBuJyoK1dOz6jrTiQypAC%2BH8g6oZkBg%2BCxg%40mail.gmail.com%3E
http://rhn.redhat.com/errata/RHSA-2016-2068.html
http://rhn.redhat.com/errata/RHSA-2016-2069.html
http://rhn.redhat.com/errata/RHSA-2016-2070.html
http://rhn.redhat.com/errata/RHSA-2016-2071.html
http://rhn.redhat.com/errata/RHSA-2016-2072.html
http://www.debian.org/security/2016/dsa-3611
http://www.debian.org/security/2016/dsa-3614
http://www.securityfocus.com/bid/91453
http://www.securitytracker.com/id/1036427
http://www.securitytracker.com/id/1036900
http://www.securitytracker.com/id/1037029
http://www.securitytracker.com/id/1039606
http://www.ubuntu.com/usn/USN-3027-1
https://bugzilla.redhat.com/show_bug.cgi?id=1349468
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05204371
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05289840
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05324759
http://www.kb.cert.org/vuls/id/797896
http://www.securityfocus.com/bid/91818
http://www.securitytracker.com/id/1036331
https://access.redhat.com/errata/RHSA-2016:1635
https://access.redhat.com/errata/RHSA-2016:1636
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03770en_us
https://httpoxy.org/
https://www.apache.org/security/asf-httpoxy-response.txt
http://legalhackers.com/advisories/Tomcat-RedHat-Pkgs-Root-PrivEsc-Exploit-CVE-2016-5425.html
http://packetstormsecurity.com/files/139041/Apache-Tomcat-8-7-6-Privilege-Escalation.html
http://www.openwall.com/lists/oss-security/2016/10/10/2
http://www.securityfocus.com/bid/93472
http://www.securitytracker.com/id/1036979
https://www.exploit-db.com/exploits/40488/
http://www.securityfocus.com/bid/93478
https://bugzilla.redhat.com/show_bug.cgi?id=1367447
http://rhn.redhat.com/errata/RHSA-2017-0244.html
http://rhn.redhat.com/errata/RHSA-2017-0245.html
http://rhn.redhat.com/errata/RHSA-2017-0246.html
http://rhn.redhat.com/errata/RHSA-2017-0247.html
http://rhn.redhat.com/errata/RHSA-2017-0250.html
http://rhn.redhat.com/errata/RHSA-2017-0527.html
http://www.debian.org/security/2016/dsa-3738
http://www.securityfocus.com/bid/94461
http://www.securitytracker.com/id/1037332
https://access.redhat.com/errata/RHSA-2017:0935
https://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.48
https://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.73
https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.0.39
https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.8
https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.0.M13
https://www.exploit-db.com/exploits/41783/
http://www.securityfocus.com/bid/96895
http://www.debian.org/security/2016/dsa-3739
http://www.openwall.com/lists/oss-security/2016/12/02/10
http://www.openwall.com/lists/oss-security/2016/12/02/5
http://www.securityfocus.com/bid/94643
http://www.ubuntu.com/usn/USN-3177-1
http://www.ubuntu.com/usn/USN-3177-2
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=845393
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=845385
http://rhn.redhat.com/errata/RHSA-2017-0517.html
http://rhn.redhat.com/errata/RHSA-2017-0826.html
http://rhn.redhat.com/errata/RHSA-2017-0827.html
http://rhn.redhat.com/errata/RHSA-2017-0828.html
http://rhn.redhat.com/errata/RHSA-2017-0829.html
http://www.debian.org/security/2017/dsa-3787
http://www.debian.org/security/2017/dsa-3788
http://www.securityfocus.com/bid/96293
http://www.securitytracker.com/id/1037860
https://bugs.debian.org/851304
https://bz.apache.org/bugzilla/show_bug.cgi?id=60578
https://lists.debian.org/debian-security-announce/2017/msg00038.html
https://lists.debian.org/debian-security-announce/2017/msg00039.html
http://www.debian.org/security/2016/dsa-3720
http://www.securityfocus.com/bid/93939
http://www.securitytracker.com/id/1037144
https://access.redhat.com/errata/RHSA-2017:2247
https://lists.apache.org/thread.html/1872f96bad43647832bdd84a408794cd06d9cbb557af63085ca10009@%3Cannounce.tomcat.apache.org%3E
http://rhn.redhat.com/errata/RHSA-2017-1551.html
http://www.securityfocus.com/bid/93942
http://www.securitytracker.com/id/1037142
http://www.securitytracker.com/id/1038757
https://access.redhat.com/errata/RHSA-2017:1548
https://access.redhat.com/errata/RHSA-2017:1549
https://access.redhat.com/errata/RHSA-2017:1550
https://access.redhat.com/errata/RHSA-2017:1552
https://lists.apache.org/thread.html/9b3a63a20c87179815fdea14f6766853bafe79a0042dc0b4aa878a9e@%3Cannounce.tomcat.apache.org%3E
http://www.securityfocus.com/bid/93943
http://www.securitytracker.com/id/1037143
https://lists.apache.org/thread.html/09d2f2c65ac4ff5da42f15dc2b0f78b655e50f1a42e8a9784134a9eb@%3Cannounce.tomcat.apache.org%3E
http://www.securityfocus.com/bid/93944
http://www.securitytracker.com/id/1037141
https://lists.apache.org/thread.html/5a2105a56b2495ab70fa568f06925bd861f0d71ffab4fb38bb4fdc45@%3Cannounce.tomcat.apache.org%3E
http://www.securityfocus.com/bid/93940
http://www.securitytracker.com/id/1037145
https://lists.apache.org/thread.html/9325837eb00cba5752c092047433c7f0415134d16e7f391447ff4352@%3Cannounce.tomcat.apache.org%3E
http://www.securityfocus.com/bid/94462
http://www.securitytracker.com/id/1037330
https://lists.apache.org/thread.html/a9f24571460af003071475b75f18cad81ebcc36fa7c876965a75e32a@%3Cannounce.tomcat.apache.org%3E
http://seclists.org/oss-sec/2016/q4/502
http://www.securityfocus.com/bid/94463
http://www.securitytracker.com/id/1037331
http://www.debian.org/security/2017/dsa-3754
http://www.debian.org/security/2017/dsa-3755
http://www.securityfocus.com/bid/94828
http://www.securitytracker.com/id/1037432
https://lists.apache.org/thread.html/4113c05d37f37c12b8033205684f04033c5f7a9bae117d4af23b32b4@%3Cannounce.tomcat.apache.org%3E
http://breaktoprotect.blogspot.com/2017/09/the-case-of-cve-2017-12615-tomcat-7-put.html
http://www.securityfocus.com/bid/100901
http://www.securitytracker.com/id/1039392
https://access.redhat.com/errata/RHSA-2017:3080
https://access.redhat.com/errata/RHSA-2017:3081
https://access.redhat.com/errata/RHSA-2017:3113
https://access.redhat.com/errata/RHSA-2017:3114
https://access.redhat.com/errata/RHSA-2018:0465
https://access.redhat.com/errata/RHSA-2018:0466
https://github.com/breaktoprotect/CVE-2017-12615
https://lists.apache.org/thread.html/8fcb1e2d5895413abcf266f011b9918ae03e0b7daceb118ffbf23f8c@%3Cannounce.tomcat.apache.org%3E
https://security.netapp.com/advisory/ntap-20171018-0001/
https://www.exploit-db.com/exploits/42953/
https://www.synology.com/support/security/Synology_SA_17_54_Tomcat
http://www.securityfocus.com/bid/100897
http://www.securitytracker.com/id/1039393
https://lists.apache.org/thread.html/1df9b4552464caa42047062fe7175da0da06c18ecc8daf99258bbda6@%3Cannounce.tomcat.apache.org%3E
http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
http://www.securityfocus.com/bid/100954
http://www.securitytracker.com/id/1039552
https://access.redhat.com/errata/RHSA-2018:0268
https://access.redhat.com/errata/RHSA-2018:0269
https://access.redhat.com/errata/RHSA-2018:0270
https://access.redhat.com/errata/RHSA-2018:0271
https://access.redhat.com/errata/RHSA-2018:0275
https://access.redhat.com/errata/RHSA-2018:2939
https://lists.apache.org/thread.html/3fd341a604c4e9eab39e7eaabbbac39c30101a022acc11dd09d7ebcb@%3Cannounce.tomcat.apache.org%3E
https://lists.debian.org/debian-lts-announce/2017/11/msg00009.html
https://security.netapp.com/advisory/ntap-20171018-0002/
https://security.netapp.com/advisory/ntap-20180117-0002/
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03812en_us
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03828en_us
https://usn.ubuntu.com/3665-1/
https://www.exploit-db.com/exploits/42966/
https://www.exploit-db.com/exploits/43008/
http://www.debian.org/security/2017/dsa-3842
http://www.debian.org/security/2017/dsa-3843
http://www.securitytracker.com/id/1038218
https://access.redhat.com/errata/RHSA-2017:1801
https://access.redhat.com/errata/RHSA-2017:1802
https://access.redhat.com/errata/RHSA-2017:2493
https://access.redhat.com/errata/RHSA-2017:2494
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03730en_us
https://lists.apache.org/thread.html/5796678c5a773c6f3ff57c178ac247d85ceca0dee9190ba48171451a@%3Cusers.tomcat.apache.org%3E
http://www.securityfocus.com/bid/97530
http://www.securitytracker.com/id/1038220
https://access.redhat.com/errata/RHSA-2017:1809
https://lists.apache.org/thread.html/d0e00f2e147a9e9b13a6829133092f349b2882bf6860397368a52600@%3Cannounce.tomcat.apache.org%3E
http://www.securityfocus.com/bid/97531
http://www.securitytracker.com/id/1038217
https://lists.apache.org/thread.html/d24303fb095db072740d8154b0f0db3f2b8f67bc91a0562dbe89c738@%3Cannounce.tomcat.apache.org%3E
http://www.securityfocus.com/bid/97544
http://www.securitytracker.com/id/1038219
https://bz.apache.org/bugzilla/show_bug.cgi?id=60918
https://lists.apache.org/thread.html/6694538826b87522fb723d2dcedd537e14ebe0a381d92e5525a531d8@%3Cannounce.tomcat.apache.org%3E
http://www.debian.org/security/2017/dsa-3891
http://www.debian.org/security/2017/dsa-3892
http://www.securityfocus.com/bid/98888
http://www.securitytracker.com/id/1038641
https://access.redhat.com/errata/RHSA-2017:2633
https://access.redhat.com/errata/RHSA-2017:2635
https://access.redhat.com/errata/RHSA-2017:2636
https://access.redhat.com/errata/RHSA-2017:2637
https://access.redhat.com/errata/RHSA-2017:2638
https://lists.apache.org/thread.html/a42c48e37398d76334e17089e43ccab945238b8b7896538478d76066@%3Cannounce.tomcat.apache.org%3E
http://www.debian.org/security/2017/dsa-3974
http://www.securityfocus.com/bid/100280
https://lists.apache.org/thread.html/22b4bb077502f847e2b9fcf00b96e81e734466ab459780ff73b60c0f@%3Cannounce.tomcat.apache.org%3E
http://www.securityfocus.com/bid/100256
https://lists.apache.org/thread.html/d3a5818e8af731bde6a05ef031ed3acc093c6dd7c4bfcc4936eafd6c@%3Cannounce.tomcat.apache.org%3E
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
http://www.securityfocus.com/bid/103170
http://www.securitytracker.com/id/1040427
https://access.redhat.com/errata/RHSA-2018:1320
https://access.redhat.com/errata/RHSA-2018:1447
https://access.redhat.com/errata/RHSA-2018:1448
https://access.redhat.com/errata/RHSA-2018:1449
https://access.redhat.com/errata/RHSA-2018:1450
https://access.redhat.com/errata/RHSA-2018:1451
https://lists.apache.org/thread.html/b1d7e2425d6fd2cebed40d318f9365b44546077e10949b01b1f8a0fb@%3Cannounce.tomcat.apache.org%3E
https://lists.debian.org/debian-lts-announce/2018/03/msg00004.html
https://lists.debian.org/debian-lts-announce/2018/06/msg00008.html
https://lists.debian.org/debian-lts-announce/2018/07/msg00044.html
https://security.netapp.com/advisory/ntap-20180706-0001/
https://www.debian.org/security/2018/dsa-4281
http://www.securityfocus.com/bid/103144
http://www.securitytracker.com/id/1040428
https://lists.apache.org/thread.html/d3354bb0a4eda4acc0a66f3eb24a213fdb75d12c7d16060b23e65781@%3Cannounce.tomcat.apache.org%3E
http://www.securityfocus.com/bid/104203
http://www.securitytracker.com/id/1040998
http://www.securitytracker.com/id/1041888
https://access.redhat.com/errata/RHSA-2018:2469
https://access.redhat.com/errata/RHSA-2018:2470
https://access.redhat.com/errata/RHSA-2018:3768
https://lists.apache.org/thread.html/fbfb713e4f8a4c0f81089b89450828011343593800cae3fb629192b1@%3Cannounce.tomcat.apache.org%3E
https://security.netapp.com/advisory/ntap-20181018-0002/
http://tomcat.apache.org/
https://tomcat.apache.org/security-9.html