Control: severity -1 normal
Hello,
Am 04.05.20 um 21:58 schrieb Gianluca Bonetti:
> Package: tomcat8
> Version: 8.5.54-0+deb9u1
> Severity: grave
>
> Dear Maintainer,
>
> Last tomcat8 upgrade, fixing CVE-2020-1938, is breaking the
> functionalities of Tomcat AJP connector
> in standard setup.
Processing control commands:
> severity -1 normal
Bug #959747 [tomcat8] tomcat8: Tomcat8 fix for CVE-2020-1938 breaks
compatibility with Apache2 mod_proxy_ajp
Severity set to 'normal' from 'grave'
--
959747: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959747
Debian Bug Tracking System
Package: tomcat8
Version: 8.5.54-0+deb9u1
Severity: grave
Dear Maintainer,
Last tomcat8 upgrade, fixing CVE-2020-1938, is breaking the functionalities
of Tomcat AJP connector
in standard setup.
The updated tomcat8 version implements 'secretRequired' parameter in
tag for config file
3 matches
Mail list logo