https://bugzilla.redhat.com/show_bug.cgi?id=1441223
--- Doc Text *updated* by Eric Christensen sparks@redhat.com --- A vulnerability was discovered in tomcat. When running an untrusted application under a SecurityManager it was possible, under some circumstances, for that application to retain references to the request or response objects and thereby access and/or modify information associated with another web application.