-
Committer:
Bazaar Package Importer
-
Author(s):
James Page
-
Date:
2011-09-26 11:42:02 UTC
-
mfrom:
(10.1.1 hardy-proposed)
-
Revision ID:
james.westby@ubuntu.com-20110926114202-5yiffxcgv06wizy4
Tags: 5.5.25-5ubuntu1.3
* SECURITY UPDATE: Apache Tomcat Authentication bypass and information
disclosure (LP: #843701).
- connectors/jk/java/org/apache/coyote/ajp/AjpAprProcessor.java: Prevent AJP
request forgery via unread request body packet - upstream patch from Mark
Thomas
- http://svn.apache.org/viewvc?view=revision&revision=1162960
- CVE-2011-3190