SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for tomcat-javadoc-7.0.27-2.26.1.noarch.rpm :

* Thu Jul 25 2013 mvyskocilAATTsuse.com- tomcat-CVE-2013-2067.patch (bnc#831117)- tomcat-CVE-2012-3544-1.patch (bnc#831119)- tomcat-CVE-2012-3544-2.patch (bnc#831119)- fix bnc#768772 - Multiple bugs in tomcat init script- use chown --no-dereference to prevent symlink attacks on log (bnc#822177#c7/prevents CVE-2013-1976)
* Sat Feb 16 2013 m407AATTmail.ru- Fix tomcat init scripts generating malformed classpath (http://youtrack.jetbrains.com/issue/JT-18545) bnc#804992
* Wed Jan 02 2013 mvyskocilAATTsuse.com- fix bnc#794548 - denial of service (CVE-2012-4534)
* tomcat-CVE-2012-4534.patch fixes apache#53138, apache#52858 http://svn.apache.org/viewvc?view=rev&rev=1340218
* Mon Dec 10 2012 mvyskocilAATTsuse.com- fix bnc#793394 - bypass of security constraints (CVE-2012-3546)
* tomcat-CVE-2012-3546.patch http://svn.apache.org/viewvc?view=revision&revision=1377892- fix bnc#793391 - bypass of CSRF prevention filter (CVE-2012-4431)
* tomcat-CVE-2012-4431.patch http://svn.apache.org/viewvc?view=revision&revision=1393088
* Fri Dec 07 2012 mvyskocilAATTsuse.com- document how to protect against slowloris DoS (CVE-2012-5568/bnc#791679) in README.SUSE
* Tue Dec 04 2012 mvyskocilAATTsuse.com- fixes bnc#791423 - cnonce tracking weakness (CVE-2012-5885) bnc#791424 - authentication caching weakness (CVE-2012-5886) bnc#791426 - stale nonce weakness (CVE-2012-5887)
* tomcat-dont-parse-user-name-twice.patch http://svn.apache.org/viewvc?view=revision&revision=1366723
* tomcat-CVE-2009-2693-CVE-2009-2901-CVE-2009-2902.patch http://svn.apache.org/viewvc?view=revision&revision=1377807
* Mon Nov 26 2012 mvyskocilAATTsuse.com- fix bnc#789406: HTTP NIO connector OOM DoS via a request with large headers (CVE-2012-2733)
* http://svn.apache.org/viewvc?view=revision&revision=1350301- fix bnc#779538 - Tomcat7 default current workdir isn\'t /usr/share/tomcat
* Thu Jul 19 2012 mvyskocilAATTsuse.cz- fix bnc#771802 - systemd support is broken
* change type froking to simple as it does not make a sense run java in a background to emulate that
* remove the need of nested wrappers, so /usr/sbin/tomcat-sysd now relies on systemd features like User/EnvironmentFile
* workaround the 143 exit code in Stop phase - return 0 in this case
* merge the jsvc into tomcat-sysd code, the -jsvc-sysd is a symlink
* properly use jsvc with pid file to start and stop
* Wed Jun 13 2012 mvyskocilAATTsuse.cz- update to 7.0.26 (bugfix release)- rename package to tomcat in order to emphasise a fact, there is only one major release of tomcat maintained in distribution- add manifest files and systemd support (thanks Fedora)- create tomcat-jsvc package
* Thu Feb 23 2012 mvyskocilAATTsuse.cz- update to 7.0.26 (bugfix release)- fix bnc#747771 - don\'t use /var/lock/subsys sync tomcat7 init with tomcat6
* Sun Feb 19 2012 wittemarAATTgooglemail.com- update to 7.0.25 (bugfix release)
* Tue Nov 01 2011 mvyskocilAATTsuse.cz- update to 7.0.22 (bugfix release)- wrote changes and prepare for inclusion to openSUSE distribution- fix bnc#726307 /etc/tomcat7 is writtable for tomcat group
* Mon Sep 19 2011 wittemarAATTgooglemail.com- update to version 7.0.21
* Thu Jul 21 2011 mvyskocilAATTsuse.cz- update to version 7.0.16 (bugfix update)
* Wed Mar 30 2011 jrennerAATTsuse.de- add rpmlintrc, digest, init and wrapper scripts and config file - build require geronimo apis and wsdl4j - disable webservices in javadoc target
* Tue Jan 18 2011 mvyskocilAATTsuse.cz- initial packaging of tomcat7 7.0.6
  
ICM