Viewing all changes in revision 4.
- Committer: Bazaar Package Importer
- Date: 2008-08-22 09:15:11 UTC
- mfrom: (1.1.1 upstream)
- Revision ID: james.westby@ubuntu.com-20080822091511-a31sdx3utvdufjer
* New upstream version (LP: #260016)
  - Fixes CVE-2008-2938: Directory traversal vulnerability (LP: #256802)
  - Fixes CVE-2008-2370: Information disclosure vulnerability (LP: #256922)
  - Fixes CVE-2008-1232: XSS through sendError vulnerability (LP: #256926)
* Dropped CVE-2008-1947.patch (fix is shipped in this upstream release)
* control: Improve short descriptions for the binary packages
* copyright: Added link to /usr/share/common-licenses/Apache-2.0
* control: To pull the right JRE, libtomcat6-java now depends on
  default-jre-headless | java6-runtime-headless
  - Fixes CVE-2008-2938: Directory traversal vulnerability (LP: #256802)
  - Fixes CVE-2008-2370: Information disclosure vulnerability (LP: #256922)
  - Fixes CVE-2008-1232: XSS through sendError vulnerability (LP: #256926)
* Dropped CVE-2008-1947.patch (fix is shipped in this upstream release)
* control: Improve short descriptions for the binary packages
* copyright: Added link to /usr/share/common-licenses/Apache-2.0
* control: To pull the right JRE, libtomcat6-java now depends on
  default-jre-headless | java6-runtime-headless
- files added:
- java/javax/persistence/PersistenceProperty.java
- test/org/apache/el
- test/org/apache/el/lang
- files removed:
- debian/patches/CVE-2008-1947.patch
- java/org/apache/tomcat/util/net/puretls
- webapps/ROOT/admin
- files modified:
- KEYS
expand all
collapse all
added
removed
