Mon, 06 May 2024 21:03:49 UTC | login

Information for build tomcat-9.0.13-1.fc30

ID86022
Package Nametomcat
Version9.0.13
Release1.fc30
Epoch1
SummaryApache Servlet/JSP Engine, RI for Servlet 4.0/JSP 2.3 API
DescriptionTomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Java Servlet and JavaServer Pages specifications are developed by Sun under the Java Community Process. Tomcat is developed in an open and participatory environment and released under the Apache Software License version 2.0. Tomcat is intended to be a collaboration of the best-of-breed developers from around the world.
Built bydavidlt
State complete
Volume DEFAULT
StartedSun, 13 Jan 2019 15:23:39 UTC
CompletedSun, 13 Jan 2019 15:23:39 UTC
Tags
f30
f31
RPMs
src
tomcat-9.0.13-1.fc30.src.rpm (info) (download)
noarch
tomcat-9.0.13-1.fc30.noarch.rpm (info) (download)
tomcat-admin-webapps-9.0.13-1.fc30.noarch.rpm (info) (download)
tomcat-docs-webapp-9.0.13-1.fc30.noarch.rpm (info) (download)
tomcat-el-3.0-api-9.0.13-1.fc30.noarch.rpm (info) (download)
tomcat-javadoc-9.0.13-1.fc30.noarch.rpm (info) (download)
tomcat-jsp-2.3-api-9.0.13-1.fc30.noarch.rpm (info) (download)
tomcat-jsvc-9.0.13-1.fc30.noarch.rpm (info) (download)
tomcat-lib-9.0.13-1.fc30.noarch.rpm (info) (download)
tomcat-servlet-4.0-api-9.0.13-1.fc30.noarch.rpm (info) (download)
tomcat-webapps-9.0.13-1.fc30.noarch.rpm (info) (download)
Changelog * Thu Dec 13 2018 Coty Sutherland <csutherl@redhat.com> - 1:9.0.13-1 - Update to 9.0.13 - Resolves: rhbz#1636513 - CVE-2018-11784 tomcat: Open redirect in default servlet * Sun Oct 14 2018 Peter Robinson <pbrobinson@fedoraproject.org> 1:9.0.10-2 - Drop legcy sys-v bits * Tue Jul 31 2018 Coty Sutherland <csutherl@redhat.com> - 1:9.0.10-1 - Update to 9.0.10 - Resolves: rhbz#1624929 - CVE-2018-1336 tomcat: A bug in the UTF-8 decoder can lead to DoS - Resolves: rhbz#1579612 - CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins - Resolves: rhbz#1607586 - CVE-2018-8034 tomcat: host name verification missing in WebSocket client - Resolves: rhbz#1607584 - CVE-2018-8037 tomcat: Due to a mishandling of close in NIO/NIO2 connectors user sessions can get mixed up * Sat Jul 14 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1:9.0.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Tue May 01 2018 Coty Sutherland <csutherl@redhat.com> - 1:9.0.7-1 - Update to 9.0.7 * Thu Mar 15 2018 Coty Sutherland <csutherl@redhat.com> - 1:8.5.29-1 - Update to 8.5.29 - Resolves: rhbz#1548290 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unitended exposure of resources - Resolves: rhbz#1548284 CVE-2018-1305 tomcat: Late application of security constraints can lead to resource exposure for unauthorised users * Fri Feb 09 2018 Igor Gnatenko <ignatenkobrain@fedoraproject.org> - 1:8.0.49-2 - Escape macros in %changelog * Thu Feb 01 2018 Coty Sutherland <csutherl@redhat.com> - 1:8.0.49-1 - Update to 8.0.49 * Tue Dec 12 2017 Merlin Mathesius <mmathesi@redhat.com> - 1:8.0.47-3 - Cleanup spec file conditionals * Tue Oct 24 2017 Troy Dawson <tdawson@redhat.com> - 1:8.0.47-2 - Change "zip -u" to "zip" - Resolves: rhbz#1495241 [tomcat] zip -u in spec file causes race condition * Wed Oct 04 2017 Coty Sutherland <csutherl@redhat.com> - 1:8.0.47-1 - Update to 8.0.47 - Resolves: rhbz#1497682 CVE-2017-12617 tomcat: Remote Code Execution bypass for CVE-2017-12615 * Mon Aug 21 2017 Coty Sutherland <csutherl@redhat.com> - 1:8.0.46-1 - Update to 8.0.46 - Resolves: rhbz#1480620 CVE-2017-7674 tomcat: Cache Poisoning * Thu Jul 27 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1:8.0.44-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Fri Jun 09 2017 Coty Sutherland <csutherl@redhat.com> - 1:8.0.44-1 - Resolves: rhbz#1459160 CVE-2017-5664 tomcat: Security constrained bypass in error page mechanism * Tue Apr 11 2017 Coty Sutherland <csutherl@redhat.com> - 1:8.0.43-1 - Update to 8.0.43 * Fri Mar 31 2017 Coty Sutherland <csutherl@redhat.com> - 1:8.0.42-1 - Update to 8.0.42 * Thu Feb 16 2017 Coty Sutherland <csutherl@redhat.com> - 1:8.0.41-1 - Update to 8.0.41 - Resolves: rhbz#1403825 CVE-2016-8745 tomcat: information disclosure due to incorrect Processor sharing * Sat Feb 11 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1:8.0.39-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild