*** This bug is a security vulnerability *** Public security bug reported:
http://people.canonical.com/~ubuntu-security/cve/pkg/tomcat6.html lists several CVE's for tomcat6.0.39 in ubuntu trusty. As tomcat6 is in universe for trusty canonical does not provide security updates. ** Affects: tomcat6 (Ubuntu) Importance: Undecided Status: New ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-0096 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-0099 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-0075 ** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to tomcat6 in Ubuntu. https://bugs.launchpad.net/bugs/1373589 Title: several CVE's for tomcat 6.0.39 in trusty To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/tomcat6/+bug/1373589/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
