[Bug 1835405] [NEW] CVE-2018-11759 Apache Tomcat JK (mod_jk) Connector path traversal
Public bug reported: Ubuntu 18.04 is affected, since it shipps a vurnable version. You can bypass the authentication with a simicolon. Could be get an update from 18.10 and newer, which already got 1.2.46, which fixes this? ** Affects: libapache-mod-jk (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1835405 Title: CVE-2018-11759 Apache Tomcat JK (mod_jk) Connector path traversal To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libapache-mod-jk/+bug/1835405/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1834139] Re: The tomcat9 user tomcat has wrong home directory /
** Summary changed: - The tomcat9 user has wrong home directory / + The tomcat9 user tomcat has wrong home directory / -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1834139 Title: The tomcat9 user tomcat has wrong home directory / To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/tomcat9/+bug/1834139/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1834139] [NEW] The tomcat9 user has wrong home directory /
Public bug reported: I noticed, that the package "tomcat9" creates a new user called tomcat. This is fine, but there is a problem. The home directory in /etc/passwd is / (root), which is supposed to be wrong. Older versions, like "tomcat8", do have /var/lib/tomcat8 as it's own home directory. This should be corrected, as a single user shouldn't have / as home directory. Steps to reproduce: apt-get install tomcat9 check /etc/passwd for home directory of tomcat user The release of Ubuntu you are using, via 'lsb_release -rd' or System -> About Ubuntu: Description:Ubuntu 18.04.2 LTS Release:18.04 The version of the package you are using, via 'apt-cache policy pkgname' or by checking in Software Center: tomcat9: Installiert: 9.0.16-3~18.04.1 Installationskandidat: 9.0.16-3~18.04.1 What you expected to happen: Home directory is set to "/var/lib/tomcat9" What happened instead: Home directory is set to "/" ** Affects: tomcat9 (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1834139 Title: The tomcat9 user has wrong home directory / To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/tomcat9/+bug/1834139/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1443283] Re: mugshot crashed with TypeError in _spawn(): The argument, args, must be a list.
I can still reproduce. This patch fixed it for me. ** Attachment added: "fix_env_spawn_args.patch.txt" https://bugs.launchpad.net/ubuntu/+source/mugshot/+bug/1443283/+attachment/5156131/+files/fix_env_spawn_args.patch.txt -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1443283 Title: mugshot crashed with TypeError in _spawn(): The argument, args, must be a list. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mugshot/+bug/1443283/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1606331] Re: StringIndexOutOfBoundsException - Tomcat8.0.32
Any news on getting this into the main repositories? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1606331 Title: StringIndexOutOfBoundsException - Tomcat8.0.32 To manage notifications about this bug go to: https://bugs.launchpad.net/tomcat7/+bug/1606331/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1606331] Re: StringIndexOutOfBoundsException - Tomcat8.0.32
I also confirm. Using tomcat8 from ppa works and solves our problem. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1606331 Title: StringIndexOutOfBoundsException - Tomcat8.0.32 To manage notifications about this bug go to: https://bugs.launchpad.net/tomcat7/+bug/1606331/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
