Hello,

Tomcat has a known vulnerability fixed in 7.0.70:
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-3092? Are there
plans to adopt it in the 1.7.x branches?

Best Regards,
Dimitar