Login
Newsletter
Werbung

Sicherheit: Preisgabe von Informationen in tomcat
Aktuelle Meldungen Distributionen
Name: Preisgabe von Informationen in tomcat
ID: FEDORA-2013-7993
Distribution: Fedora
Plattformen: Fedora 18
Datum: Di, 21. Mai 2013, 10:49
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2071
Applikationen: Apache Tomcat

Originalnachricht

Name        : tomcat
Product : Fedora 18
Version : 7.0.40
Release : 1.fc18
URL : http://tomcat.apache.org/
Summary : Apache Servlet/JSP Engine, RI for Servlet 3.0/JSP 2.2 API
Description :
Tomcat is the servlet container that is used in the official Reference
Implementation for the Java Servlet and JavaServer Pages technologies.
The Java Servlet and JavaServer Pages specifications are developed by
Sun under the Java Community Process.

Tomcat is developed in an open and participatory environment and
released under the Apache Software License version 2.0. Tomcat is intended
to be a collaboration of the best-of-breed developers from around the world.

-------------------------------------------------------------------------------
-
Update Information:

- Updated to 7.0.40
- Resolves: rhbz 956569 added missing commons-pool link
-------------------------------------------------------------------------------
-
ChangeLog:

* Sat May 11 2013 Ivan Afonichev <ivan.afonichev@gmail.com> 0:7.0.40-1
- Updated to 7.0.40
- Resolves: rhbz 956569 added missing commons-pool link
* Wed Feb 20 2013 Ivan Afonichev <ivan.afonichev@gmail.com> 0:7.0.39-1
- Updated to 7.0.39
* Wed Feb 20 2013 Ivan Afonichev <ivan.afonichev@gmail.com> 0:7.0.37-1
- Updated to 7.0.37
* Mon Feb 4 2013 Ivan Afonichev <ivan.afonichev@gmail.com> 0:7.0.35-1
- Updated to 7.0.35
- systemd SuccessExitStatus=143 for proper stop exit code processing
* Mon Dec 24 2012 Ivan Afonichev <ivan.afonichev@gmail.com> 0:7.0.34-1
- Updated to 7.0.34
- ecj >= 4.2.1 now required
- Resolves: rhbz 889395 concat classpath correctly; chdir to $CATALINA_HOME
* Fri Dec 7 2012 Ivan Afonichev <ivan.afonichev@gmail.com> 0:7.0.33-2
- Resolves: rhbz 883806 refix logdir ownership
* Sun Dec 2 2012 Ivan Afonichev <ivan.afonichev@gmail.com> 0:7.0.33-1
- Updated to 7.0.33
- Resolves: rhbz 873620 need chkconfig for update-alternatives
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #928294 - tomcat-7.0.39 is available
https://bugzilla.redhat.com/show_bug.cgi?id=928294
[ 2 ] Bug #956569 - Missing link creation for apache-commons-pool
https://bugzilla.redhat.com/show_bug.cgi?id=956569
[ 3 ] Bug #961806 - CVE-2013-2071 tomcat: Information disclosure in
asynchronous context when using AsyncListeners that threw RuntimeExceptions [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=961806
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update tomcat' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung