[ubuntu/plucky-security] tomcat10 10.1.35-1ubuntu0.1 (Accepted)
Bruce Cable
bruce.cable at canonical.com
Tue Aug 19 23:40:16 UTC 2025
tomcat10 (10.1.35-1ubuntu0.1) plucky-security; urgency=medium
* SECURITY UPDATE: Security Constraint Bypass
- debian/patches/CVE-2025-46701-pre1.patch: Refactor before
applying security patch
- debian/patches/CVE-2025-46701.patch: Refactor CGI servlet to
access resources via WebResources
- debian/patches/CVE-2025-31651.patch: Better handling of URLs with
literal ';' and '?'
- CVE-2025-46701
- CVE-2025-31651
Date: 2025-08-04 06:07:13.649295+00:00
Changed-By: Bruce Cable <bruce.cable at canonical.com>
https://launchpad.net/ubuntu/+source/tomcat10/10.1.35-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the plucky-changes
mailing list