tomcat6 (6.0.20-2ubuntu2.3) karmic-security; urgency=low
* SECURITY UPDATE: cross-site scripting in Manager application
- debian/patches/0011-CVE-2010-4172.patch: add proper escaping to
java/org/apache/catalina/manager/JspHelper.java,
webapps/manager/{sessionDetail,sessionsList}.jsp.
- patch backported from Debian 6.0.28-9 package
- CVE-2010-4172
Date: Thu, 13 Jan 2011 15:52:00 -0600
Changed-By: Marc Deslauriers <[email protected]>
Maintainer: Ubuntu Core Developers <[email protected]>
https://launchpad.net/ubuntu/karmic/+source/tomcat6/6.0.20-2ubuntu2.3
Format: 1.8
Date: Thu, 13 Jan 2011 15:52:00 -0600
Source: tomcat6
Binary: tomcat6-common tomcat6 tomcat6-user libtomcat6-java libservlet2.5-java
libservlet2.5-java-doc tomcat6-admin tomcat6-examples tomcat6-docs
Architecture: source
Version: 6.0.20-2ubuntu2.3
Distribution: karmic-security
Urgency: low
Maintainer: Ubuntu Core Developers <[email protected]>
Changed-By: Marc Deslauriers <[email protected]>
Description:
libservlet2.5-java - Servlet 2.5 and JSP 2.1 Java API classes
libservlet2.5-java-doc - Servlet 2.5 and JSP 2.1 Java API documentation
libtomcat6-java - Servlet and JSP engine -- core libraries
tomcat6 - Servlet and JSP engine
tomcat6-admin - Servlet and JSP engine -- admin web applications
tomcat6-common - Servlet and JSP engine -- common files
tomcat6-docs - Servlet and JSP engine -- example web applications
tomcat6-examples - Servlet and JSP engine -- example web applications
tomcat6-user - Servlet and JSP engine -- tools to create user instances
Changes:
tomcat6 (6.0.20-2ubuntu2.3) karmic-security; urgency=low
.
* SECURITY UPDATE: cross-site scripting in Manager application
- debian/patches/0011-CVE-2010-4172.patch: add proper escaping to
java/org/apache/catalina/manager/JspHelper.java,
webapps/manager/{sessionDetail,sessionsList}.jsp.
- patch backported from Debian 6.0.28-9 package
- CVE-2010-4172
Checksums-Sha1:
3a920855131f90cce39537c72a7b4db6186bf284 2204 tomcat6_6.0.20-2ubuntu2.3.dsc
b8ebc014b5c4c9bf21447af37d347c78b5a88099 27239
tomcat6_6.0.20-2ubuntu2.3.diff.gz
Checksums-Sha256:
545162175cd7fd0f67a00bafd8ce078752f9aea213d2d2d18abe1b8f024b829e 2204
tomcat6_6.0.20-2ubuntu2.3.dsc
13f4160edca0136e4ba3d7546400145ce2291330c9c1e19650c97823a3b36016 27239
tomcat6_6.0.20-2ubuntu2.3.diff.gz
Files:
34fb37d15fe193f6def5becb76b0dbaf 2204 java optional
tomcat6_6.0.20-2ubuntu2.3.dsc
0cc20bab1a9b311bdebf30b7906a19a7 27239 java optional
tomcat6_6.0.20-2ubuntu2.3.diff.gz
Original-Maintainer: Debian Java Maintainers
<[email protected]>
--
Karmic-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/karmic-changes
