** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2013-1571
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to tomcat7 in Ubuntu.
https://bugs.launchpad.net/bugs/1178645
Title:
tomcat7 needs update to 7.0.40
To manage
Am 19.07.2013 05:24, schrieb Mark Kirk:
Hi, any movement on this for Precise? I'm waiting for this to apply to
some 12.04LTS servers. Many thanks.
Have a look at
https://launchpad.net/~dirk-computer42/+archive/c42-backport for a
working backport to precise.
Best Regards,
H.-Dirk Schmitt
--
See https://bugzilla.computer42.org/show_bug.cgi?id=2381 it is a simple
no change backport from debian.
---
Ubuntu Bug Squad volunteer triager
http://wiki.ubuntu.com/BugSquad
** Bug watch added: bugzilla.computer42.org/ #2381
https://bugzilla.computer42.org/show_bug.cgi?id=2381
--
You
Tomcat7 in 12.04 LTS is community supported -- H.-Dirk, is your
backported package of sufficient quality that the debdiff could be used
to provide an update for other precise users? Please see
https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for some details.
Thanks
--
You received this
Hi, any movement on this for Precise? I'm waiting for this to apply to
some 12.04LTS servers. Many thanks.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to tomcat7 in Ubuntu.
https://bugs.launchpad.net/bugs/1178645
Title:
tomcat7
This bug was fixed in the package tomcat7 - 7.0.30-0ubuntu1.2
---
tomcat7 (7.0.30-0ubuntu1.2) quantal-security; urgency=low
* SECURITY UPDATE: FORM authentication request injection
- debian/patches/CVE-2013-2067.patch: properly change session ID
in
This bug was fixed in the package tomcat7 - 7.0.35-1~exp2ubuntu1.1
---
tomcat7 (7.0.35-1~exp2ubuntu1.1) raring-security; urgency=low
* SECURITY UPDATE: information leak via AsyncListeners and
RuntimeExceptions (LP: #1178645)
- debian/patches/CVE-2013-2071.patch: catch
** Branch linked: lp:ubuntu/quantal-security/tomcat7
** Branch linked: lp:~ubuntu-branches/ubuntu/raring/tomcat7/raring-
security
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to tomcat7 in Ubuntu.
See https://bugs.launchpad.net/quantal-backports/+bug/1073159
The backport of 7.0.40 to **all** previous releases is still needed.
---
Ubuntu Bug Squad volunteer triager
http://wiki.ubuntu.com/BugSquad
--
You received this bug notification because you are a member of Ubuntu
Server Team, which
Reason is CVE-2013-2071
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to tomcat7 in Ubuntu.
https://bugs.launchpad.net/bugs/1178645
Title:
tomcat7 needs update to 7.0.40
To manage notifications about this bug go to:
The saucy version is not visible below
http://packages.ubuntu.com/search?suite=saucykeywords=tomcat7
Are there any additional changes to the debian 7.0.40-2 version ?
The reason for my question is my backport to precise in
https://launchpad.net/~dirk-computer42/+archive/c42-backport
Currently
Looks like packages.ubuntu.com is out of date:
https://launchpad.net/ubuntu/+source/tomcat7/7.0.40-2
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to tomcat7 in Ubuntu.
https://bugs.launchpad.net/bugs/1178645
Title:
tomcat7 needs
** Changed in: tomcat7 (Ubuntu Saucy)
Status: Confirmed = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to tomcat7 in Ubuntu.
https://bugs.launchpad.net/bugs/1178645
Title:
tomcat7 needs update to 7.0.40
To
7.0.40 is available in debian/sid.
A backport to precise will be built in ppa:dirk-computer42/c42-backport
See also https://bugzilla.computer42.org/show_bug.cgi?id=2360
** Bug watch added: bugzilla.computer42.org/ #2360
https://bugzilla.computer42.org/show_bug.cgi?id=2360
--
You received
** Tags added: upgrade-software-version
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to tomcat7 in Ubuntu.
https://bugs.launchpad.net/bugs/1178645
Title:
tomcat7 needs update to 7.0.40
To manage notifications about this bug go to:
** Description changed:
The new version has some more security fixed, which are not part of 7.0.34
(and .39).
Also a backport to precise [quantal, ...] is needed.
+
+ See announcement mail:
+ ---
+
+ The Apache Tomcat team announces the immediate availability of Apache
Thank you for taking the time to report this bug and helping to make
Ubuntu better.
Marking as Public Security for the attention of the security team as it
looks like this may affect Quantal and Raring, where tomcat is in main.
tomcat is in universe in Oneiric and Precise.
** Information type
** Also affects: tomcat7 (Ubuntu Precise)
Importance: Undecided
Status: New
** Also affects: tomcat7 (Ubuntu Quantal)
Importance: Undecided
Status: New
** Also affects: tomcat7 (Ubuntu Raring)
Importance: Undecided
Status: New
** Also affects: tomcat7 (Ubuntu
18 matches
Mail list logo