Candidate: CVE-2008-4308
PublicDate: 2009-02-26 23:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4308
Description:
 The doRead method in Apache Tomcat 4.1.32 through 4.1.34 and 5.5.10 through
 5.5.20 does not return a -1 to indicate when a certain error condition has
 occurred, which can cause Tomcat to send POST content from one request to a
 different request.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_tomcat4:
upstream_tomcat4: needs-triage
dapper_tomcat4: not-affected (4.1.31-4)
gutsy_tomcat4: DNE
hardy_tomcat4: DNE
intrepid_tomcat4: DNE
devel_tomcat4: DNE

Patches_tomcat5.5:
upstream_tomcat5.5: needs-triage
dapper_tomcat5.5: DNE
gutsy_tomcat5.5: not-affected (5.5.25-1ubuntu1)
hardy_tomcat5.5: not-affected (5.5.25-5ubuntu1.1)
intrepid_tomcat5.5: not-affected (5.5.26-3ubuntu3)
devel_tomcat5.5: not-affected (5.5.26-5ubuntu1)