[ubuntu/yakkety-proposed] tomcat8 8.0.36-2ubuntu1 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Fri Sep 16 15:52:15 UTC 2016
tomcat8 (8.0.36-2ubuntu1) yakkety; urgency=medium
* SECURITY UPDATE: privilege escalation via insecure init script
- debian/tomcat8.init: don't follow symlinks when handling the
catalina.out file.
- CVE-2016-1240
Date: Fri, 16 Sep 2016 09:08:41 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/tomcat8/8.0.36-2ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 16 Sep 2016 09:08:41 -0400
Source: tomcat8
Binary: tomcat8-common tomcat8 tomcat8-user libtomcat8-java libservlet3.1-java libservlet3.1-java-doc tomcat8-admin tomcat8-examples tomcat8-docs
Architecture: source
Version: 8.0.36-2ubuntu1
Distribution: yakkety
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libservlet3.1-java - Servlet 3.1, JSP 2.3, EL 3.0 and WebSocket 1.0 Java API classes
libservlet3.1-java-doc - Servlet 3.1, JSP 2.3, EL 3.0 and WebSocket 1.0 Java API documenta
libtomcat8-java - Apache Tomcat 8 - Servlet and JSP engine -- core libraries
tomcat8 - Apache Tomcat 8 - Servlet and JSP engine
tomcat8-admin - Apache Tomcat 8 - Servlet and JSP engine -- admin web application
tomcat8-common - Apache Tomcat 8 - Servlet and JSP engine -- common files
tomcat8-docs - Apache Tomcat 8 - Servlet and JSP engine -- documentation
tomcat8-examples - Apache Tomcat 8 - Servlet and JSP engine -- example web applicati
tomcat8-user - Apache Tomcat 8 - Servlet and JSP engine -- tools to create user
Changes:
tomcat8 (8.0.36-2ubuntu1) yakkety; urgency=medium
.
* SECURITY UPDATE: privilege escalation via insecure init script
- debian/tomcat8.init: don't follow symlinks when handling the
catalina.out file.
- CVE-2016-1240
Checksums-Sha1:
a5190e4e1f2abbd30e45d52553346c7c5dbe136c 2925 tomcat8_8.0.36-2ubuntu1.dsc
9476635551d5af8fcc0b0dfaa5ade88c367d6eb8 38928 tomcat8_8.0.36-2ubuntu1.debian.tar.xz
Checksums-Sha256:
164d64d33e382477e42cf61ad73bfe55e2468854d953474fa9828386d294c959 2925 tomcat8_8.0.36-2ubuntu1.dsc
a7d510787652d8494f9a16a9739c555930e1fc89207c5098fa8dea74d0aa4d10 38928 tomcat8_8.0.36-2ubuntu1.debian.tar.xz
Files:
32b9b11a91dca8adc394d196888c8efb 2925 java optional tomcat8_8.0.36-2ubuntu1.dsc
4cbac80f780fc9aa01854623d88e397c 38928 java optional tomcat8_8.0.36-2ubuntu1.debian.tar.xz
Original-Maintainer: Debian Java Maintainers <pkg-java-maintainers at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=AprF
-----END PGP SIGNATURE-----
More information about the Yakkety-changes
mailing list