← Back to branch summary

~ubuntu-branches/ubuntu/precise/tomcat6/precise-updates

  • Committer: Package Import Robot
  • Author(s): Marc Deslauriers
  • Date: 2015-06-22 08:16:23 UTC
  • Revision ID: package-import@ubuntu.com-20150622081623-sh9vkss0stitgwv8
Tags: 6.0.35-1ubuntu3.6
https://launchpad.net/bugs/1449975
https://launchpad.net/bugs/1449975
* SECURITY UPDATE: HTTP request smuggling or denial of service via
  streaming with malformed chunked transfer encoding (LP: #1449975)
  - debian/patches/CVE-2014-0227.patch: add error flag and improve i18n
    in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java,
    java/org/apache/coyote/http11/filters/LocalStrings.properties.
  - CVE-2014-0227
* SECURITY UPDATE: denial of service via aborted upload attempts
  (LP: #1449975)
  - debian/patches/CVE-2014-0230.patch: limit amount of data in
    java/org/apache/coyote/Constants.java,
    java/org/apache/coyote/http11/filters/ChunkedInputFilter.java,
    java/org/apache/coyote/http11/filters/IdentityInputFilter.java,
    java/org/apache/coyote/http11/filters/LocalStrings.properties,
    webapps/docs/config/systemprops.xml.
  - CVE-2014-0230
* SECURITY UPDATE: SecurityManager bypass via Expression Language
  - debian/patches/CVE-2014-7810.patch: handle classes that may not be
    accessible but have accessible interfaces in
    java/javax/el/BeanELResolver.java, remove unnecessary code in
    java/org/apache/jasper/runtime/PageContextImpl.java,
    java/org/apache/jasper/security/SecurityClassLoad.java.
  - CVE-2014-7810
Filename Latest Rev Last Changed Committer Comment Size
..
.pc 2.2.8 14 years ago Bazaar Package Importer * Fix missing symlinks to tomcat-coyote.jar and Diff
bin 1 15 years ago Bazaar Package Importer Import upstream version 6.0.16 Diff
conf 1 15 years ago Bazaar Package Importer Import upstream version 6.0.16 Diff
debian 2 15 years ago Bazaar Package Importer Initial release. (Closes: #480964). Diff
java 1 15 years ago Bazaar Package Importer Import upstream version 6.0.16 Diff
res 1 15 years ago Bazaar Package Importer Import upstream version 6.0.16 Diff
test 1 15 years ago Bazaar Package Importer Import upstream version 6.0.16 Diff
webapps 1 15 years ago Bazaar Package Importer Import upstream version 6.0.16 Diff
build.properties.default 1.2.8 12 years ago Package Import Robot Import upstream version 6.0.35 8.6 KB Diff Download File
build.xml 37.1.4 12 years ago Package Import Robot [ Miguel Landaeta ] * New upstream release. * Add 35.7 KB Diff Download File
BUILDING.txt 1.2.8 12 years ago Package Import Robot Import upstream version 6.0.35 5 KB Diff Download File
dist.xml 1.2.6 13 years ago Bazaar Package Importer Import upstream version 6.0.32 26.7 KB Diff Download File
eclipse.classpath 1.2.8 12 years ago Package Import Robot Import upstream version 6.0.35 1.4 KB Diff Download File
eclipse.project 1.2.5 13 years ago Bazaar Package Importer Import upstream version 6.0.28 1.1 KB Diff Download File
extras.xml 1.2.7 12 years ago Package Import Robot Import upstream version 6.0.33 16 KB Diff Download File
KEYS 1.2.6 13 years ago Bazaar Package Importer Import upstream version 6.0.32 23.3 KB Diff Download File
LICENSE 1.2.6 13 years ago Bazaar Package Importer Import upstream version 6.0.32 37 KB Diff Download File
NOTICE 1.2.6 13 years ago Bazaar Package Importer Import upstream version 6.0.32 558 bytes Diff Download File
RELEASE-NOTES 1.2.8 12 years ago Package Import Robot Import upstream version 6.0.35 8.4 KB Diff Download File
RELEASE-PLAN-6.0.txt 1 15 years ago Bazaar Package Importer Import upstream version 6.0.16 2.3 KB Diff Download File
RUNNING.txt 1.2.3 14 years ago Bazaar Package Importer Import upstream version 6.0.24 6.5 KB Diff Download File
STATUS.txt 1.2.8 12 years ago Package Import Robot Import upstream version 6.0.35 7.1 KB Diff Download File