[ubuntu/disco-updates] tomcat9 9.0.16-3ubuntu0.19.04.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Wed Sep 18 14:28:11 UTC 2019
tomcat9 (9.0.16-3ubuntu0.19.04.1) disco-security; urgency=medium
* SECURITY UPDATE: XSS attack on SSI printenv command
- debian/patches/CVE-2019-0221.patch: escape debug output to aid
readability
- CVE-2019-0221
* SECURITY UPDATE: DoS via thread exhaustion
- debian/patches/CVE-2019-10072-1.patch: expand HTTP/2 timeout
handling to connection window exhaustion on write.
- debian/patches/CVE-2019-10072-2.patch: Fix test failures. Handle
full allocation case.
- CVE-2019-10072
Date: 2019-09-13 15:23:22.979870+00:00
Changed-By: Maria Emilia Torino <emilia.torino at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/tomcat9/9.0.16-3ubuntu0.19.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Disco-changes
mailing list