Hello community, here is the log from the commit of package tomcat for openSUSE:Factory checked in at 2020-01-08 17:55:55 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/tomcat (Old) and /work/SRC/openSUSE:Factory/.tomcat.new.6675 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "tomcat" Wed Jan 8 17:55:55 2020 rev:59 rq:761823 version:9.0.30 Changes: -------- --- /work/SRC/openSUSE:Factory/tomcat/tomcat.changes 2019-11-18 20:11:18.657563857 +0100 +++ /work/SRC/openSUSE:Factory/.tomcat.new.6675/tomcat.changes 2020-01-08 17:56:27.853701227 +0100 @@ -1,0 +2,14 @@ +Fri Dec 27 10:22:58 UTC 2019 - Matei Albu <[email protected]> + +- Update to Tomcat 9.0.30. See changelog at + http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.30_(markt) +- Fixed CVEs: + - CVE-2019-0221 (bsc#1136085) + - CVE-2019-10072 (bsc#1139924) + - CVE-2019-12418 (bsc#1159723) + - CVE-2019-17563 (bsc#1159729) +- Removed patch: + * tomcat-9.0-JDTCompiler-java.patch + + It was not applied + +------------------------------------------------------------------- Old: ---- apache-tomcat-9.0.27-src.tar.gz apache-tomcat-9.0.27-src.tar.gz.asc tomcat-9.0-JDTCompiler-java.patch New: ---- apache-tomcat-9.0.30-src.tar.gz apache-tomcat-9.0.30-src.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ tomcat.spec ++++++ --- /var/tmp/diff_new_pack.GmOovM/_old 2020-01-08 17:56:29.657702175 +0100 +++ /var/tmp/diff_new_pack.GmOovM/_new 2020-01-08 17:56:29.661702178 +0100 @@ -1,7 +1,7 @@ # # spec file for package tomcat # -# Copyright (c) 2019 SUSE LLC. +# Copyright (c) 2020 SUSE LLC # Copyright (c) 2000-2009, JPackage Project # # All modifications and additions to the file contributed by third parties @@ -22,7 +22,7 @@ %define elspec 3.0 %define major_version 9 %define minor_version 0 -%define micro_version 27 +%define micro_version 30 %define packdname apache-tomcat-%{version}-src # FHS 2.3 compliant tree structure - http://www.pathname.com/fhs/2.3/ %global basedir /srv/%{name} @@ -73,14 +73,12 @@ Patch0: %{name}-%{major_version}.%{minor_version}-bootstrap-MANIFEST.MF.patch #PATCH-FIX-UPSTREAM: from jpackage.org package Patch1: %{name}-%{major_version}.%{minor_version}-tomcat-users-webapp.patch -# PATCH-FIX-UPSTREAM: https://issues.apache.org/bugzilla/show_bug.cgi?id=56373 -Patch2: %{name}-%{major_version}.%{minor_version}-JDTCompiler-java.patch # PATCH-FIX-SLE: Change security manager default policies bnc#891264 -Patch3: %{name}-%{major_version}.%{minor_version}-sle.catalina.policy.patch +Patch2: %{name}-%{major_version}.%{minor_version}-sle.catalina.policy.patch # PATCH-FIX-OPENSUSE: build javadoc with the same java source level as the class files -Patch4: %{name}-%{major_version}.%{minor_version}-javadoc.patch +Patch3: %{name}-%{major_version}.%{minor_version}-javadoc.patch # PATCH-FIX-OPENSUSE: disable adding OSGi metadata to JAR files because bndtools is not avalable in SLES/OpenSUSE -Patch5: tomcat-9.0-disable-osgi-build.patch +Patch4: tomcat-9.0-disable-osgi-build.patch BuildRequires: ant >= 1.8.1 BuildRequires: ant-antlr @@ -255,10 +253,9 @@ -name "*.jar" -o -name "*.war" -o -name "*.zip" \) -print -delete %patch0 %patch1 -#%patch2 -p1 -%patch3 +%patch2 +%patch3 -p1 %patch4 -p1 -%patch5 -p1 # remove date from docs sed -i -e '/build-date/ d' webapps/docs/tomcat-docs.xsl ++++++ apache-tomcat-9.0.27-src.tar.gz -> apache-tomcat-9.0.30-src.tar.gz ++++++ ++++ 16175 lines of diff (skipped)
