Two Remote code execution (RCE) security vulnerabilities (RCE) affecting all versions of Apache Tomcat have been found last week. [CVE-2017-12615 (RCE when readonly set to false, affects Tomcat < 7.0.81 on Windows)][1] [CVE-2017-12617 (RCE when readonly set to false, affects all Tomcat versions on all Operating systems)][2] Is ivy affected by the newly found Apache Tomcat RCE vulnerabilities (CVE-2017-12615 and CVE-2017-12617) ? [1]: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12615 [2]: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12617

Two Remote code vulnerabilities (RCE) affecting all versions of Apache Tomcat have been found last week. [CVE-2017-12615 (RCE when readonly set to false, affects Tomcat < 7.0.81 on Windows)][1] [CVE-2017-12617 (RCE when readonly set to false, affects all Tomcat versions on all Operating systems)][2] Is ivy affected by the newly found Apache Tomcat RCE vulnerabilities (CVE-2017-12615 and CVE-2017-12617) ? [1]: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12615 [2]: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12617

Two Remote code vulnerabilities (RCE) affecting all versions of Apache Tomcat have been found last week. [CVE-2017-12615 (RCE when readonly set to false, affects Tomcat < 7.0.81 on Windows)][1] [CVE-2017-12617 (RCE when readonly set to false, affects all Tomcat versions on all Operating systems)][2] Is ivy affected by the newly found Apache Tomcat RCE vulnerabilities (CVE-2017-12615 and CVE-2017-12617) ? [1]: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12615 [2]: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12617