FEDORA-2015-2109

security update in Fedora 21 for tomcat

Status: stable 4 years ago

Updated to 7.0.59

How to install

sudo dnf upgrade --advisory=FEDORA-2015-2109

Comments 10

This update has been submitted for testing by van.

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/37422/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/37422/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 testing updates repository.

This update has been pushed to testing

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by van.

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/39877/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 stable updates repository.

This update has been pushed to stable

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Disabled
Autopush (time)
Disabled
Dates
submitted 4 years ago
in testing 4 years ago
in stable 4 years ago

Related Bugs 11

00 #1027716 Problem with log4j link creation on /usr/share/java/log4j
00 #1051743 tomcat-jsvc service fails to start server
00 #1072776 CVE-2014-0075 Tomcat/JBossWeb: Limited DoS in chunked transfer encoding input filter
00 #1076949 tomcat: don't provide javax.jsp-api and javax.servlet.jsp-api
00 #1088342 CVE-2014-0096 Tomcat/JBossWeb: XXE vulnerability via user supplied XSLTs
00 #1102030 CVE-2014-0099 Tomcat/JBossWeb: Request smuggling via malicious content length header
00 #1102152 CVE-2014-0096 Apache Tomcat: XXE vulnerability via user supplied XSLTs [fedora-all]
00 #1102210 CVE-2014-0099 Apache Tomcat: Request smuggling via malicious content length header [fedora-all]
00 #1102678 CVE-2014-0075 tomcat: Limited DoS in chunked transfer encoding input filter [fedora-all]
00 #1109196 CVE-2014-0227 Tomcat/JBossWeb: Limited DoS in chunked transfer encoding input filter
00 #1190821 CVE-2014-0227 tomcat: Tomcat/JBossWeb: Limited DoS in chunked transfer encoding input filter [fedora-all]

Automated Test Results