Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

2024-01-16 Thread Mark Thomas
On 16/01/2024 15:20, Sean Whitton wrote: Hello Mark, On Mon 18 Dec 2023 at 05:00pm GMT, Mark Thomas wrote: Am I understanding this request correctly? Freexian has sold at least one customer - probably multiple customers - long term support for Tomcat 8.0.x and has now found that it is unable

Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

2024-01-16 Thread Sean Whitton
Hello Mark, On Mon 18 Dec 2023 at 05:00pm GMT, Mark Thomas wrote: > Am I understanding this request correctly? > > Freexian has sold at least one customer - probably multiple > customers - long term support for Tomcat 8.0.x and has now found that > it is unable to provide that support. > >

Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

2024-01-03 Thread Mark Thomas
On 18/12/2023 17:00, Mark Thomas wrote: On 17/12/2023 16:32, Sean Whitton wrote: Hello, I am working to backport the fix for CVE-2023-46589 to Tomcat version 8.0.14, which is what we have in Debian "jessie".  This is under the Extended LTS project for older Debian releases, run by Freexian

Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

2023-12-20 Thread Azhar Jainul Abdeen
We, the RECDO organization is a legally registerednon-profit entity based in Kantale, Trincomalle. RECDO was established in 2000and serves marginalized communities in the Eastern Province, particularly theTrincomalee District. Our work focuses on the following thematic areas:community

Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

2023-12-18 Thread Emmanuel Bourg
Le 18/12/2023 à 18:00, Mark Thomas a écrit : Am I understanding this request correctly? Mostly, but for the context, if ever that makes it morally more acceptable, Freexian here is merely a vehicle to found independent contributors to work and maintain old packages, it's nothing like a

Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

2023-12-18 Thread Emmanuel Bourg
Le 18/12/2023 à 18:15, Michael Osipov a écrit : SCNR: https://unixsheikh.com/articles/the-delusions-of-debian.html That's a low blow, this post smells more like an old systemd rant mixed with a complete misunderstanding on how Debian works than a well founded criticism. Emmanuel Bourg

Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

2023-12-18 Thread Michael Osipov
On 2023/12/18 17:00:43 Mark Thomas wrote: > On 17/12/2023 16:32, Sean Whitton wrote: > > Hello, > > > > I am working to backport the fix for CVE-2023-46589 to Tomcat version > > 8.0.14, which is what we have in Debian "jessie". This is under the > > Extended LTS project for older Debian

Re: Backporting patch for CVE-2023-46589 to Tomcat 8.0.14

2023-12-18 Thread Mark Thomas
On 17/12/2023 16:32, Sean Whitton wrote: Hello, I am working to backport the fix for CVE-2023-46589 to Tomcat version 8.0.14, which is what we have in Debian "jessie". This is under the Extended LTS project for older Debian releases, run by Freexian SARL.