FEDORA-2016-5e0bb2f21a created by van 4 years ago for Fedora 23
obsolete
  • Updated to 8.0.32
  • Fix symlinks from $CATALINA_HOME/lib perspective, resolves: #1308685
  • Remove log4j support. It has never been working actually. See #1236297
  • Move shipped config to /etc/sysconfig/tomcat. /etc/tomcat/tomcat.conf can now be used to override it with shell expansion, resolves #1293636
  • Recommend tomcat-native, resolves: #1243132
  • Resolves: #1286800 Failed to start component due to wrong allowLinking="true" in context.xml
  • Program /bin/nologin does not exist (#1302718)
  • Security fix for CVE-2016-0763

This update has been submitted for testing by van.

4 years ago

van edited this update.

4 years ago

This update has been pushed to testing.

4 years ago
User Icon nkinder commented & provided feedback 4 years ago
karma

This update will break all FreeIPA or Dogtag installations, as some classes were moved around into different jar files. Anyone that installs this update and tries to restart their Dogtag or FreeIPA services will have a failure when tomcat starts up with the following error in the journal:

Error: Could not find or load main class org.apache.catalina.startup.Bootstrap

I will file a bug about this, but I don't think this is something that should be updated in F23 since it's not backwards compatible and breaks people's installations.

User Icon nkinder commented & provided feedback 4 years ago

I have filed #1311771 for the issue mentioned above.

User Icon nkinder provided feedback 4 years ago
karma
User Icon mbabinsk commented & provided feedback 4 years ago
karma

I can confirm that this breaks FreeIPA/Dogtag installation in F23 as nkinder pointed out.

This update has been obsoleted.

4 years ago
User Icon barracks510 commented & provided feedback 4 years ago
karma

Solves some issues, but brings the others already noted.


Please login to add feedback.

Metadata
Type
security
Karma
-3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
4 years ago
in testing
4 years ago
modified
4 years ago
BZ#1236297 log4j not working on tomcat
0
0
BZ#1243132 Recommend tomcat-native
0
0
BZ#1267936 tomcat-8.0.32 is available
0
0
BZ#1286800 Failed to start component due to wrong allowLinking="true" in context.xml
0
0
BZ#1293636 Systemd tomcat.service unit loads /etc/sysconfig/tomcat without shell expansion
0
0
BZ#1302718 user 'tomcat': program '/bin/nologin' does not exist
0
0
BZ#1308685 links are broken when viewed from /usr/share/tomcat/lib
0
0
BZ#1311093 CVE-2016-0763 tomcat: security manager bypass via setGlobalContext()
0
0
BZ#1311102 CVE-2015-5174 CVE-2015-5351 CVE-2016-0714 CVE-2016-0706 CVE-2015-5345 CVE-2015-5346 CVE-2016-0763 tomcat: multiple security vulnerabilities [fedora-all]
0
0

Automated Test Results