The Apache Tomcat team announced the release of Tomcat 6.0.35 earlier today. The changelog lists only 1 fix but 6.0.35 also incorporates the fixes and improvements from the unreleased 6.0.34 version. Many of the fixes and improvements appear to be in the area of memory leak prevention and there is a security related fix in this release as well. The security fix is for the recently announced Apache Tomcat Authentication Bypass and Information Disclosure vulnerability.
Downloads are available from the usual tomcat 6 mirror sites.