<update from="maint-co...@suse.de" status="stable" type="security" version="2740">
<id>sdksp1-tomcat6</id>
<title>Security update for tomcat6</title>
<release>SUSE Linux Enterprise Software Development Kit 11 SP1</release>
<issued date="1279521920" />
<references>
<reference href="" href="https://bugzilla.novell.com/show_bug.cgi?id=622188">https://bugzilla.novell.com/show_bug.cgi?id=622188" id="622188" title="bug number 622188" type="bugzilla" />
<reference href="" href="https://bugzilla.novell.com/show_bug.cgi?id=599554">https://bugzilla.novell.com/show_bug.cgi?id=599554" id="599554" title="bug number 599554" type="bugzilla" />
<reference href="" href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2227">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2227" id="CVE-2010-2227" title="CVE-2010-2227" type="cve" />
<reference href="" href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1157">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1157" id="CVE-2010-1157" title="CVE-2010-1157" type="cve" />
</references>
<description>
This update of tomcat fixes denial of service and information disclosure
vulnerabilities which could potentially be exploited by remote attackers to
crash tomcat or to obtain sensitive information (CVE-2010-2227,
CVE-2010-1157).
Security Issues:
* CVE-2010-2227
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2227>
* CVE-2010-1157
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1157>
<pkglist>
<collection>
<package name="tomcat6" version="6.0.18" release="20.5.1" arch="noarch">
<filename>tomcat6-6.0.18-20.5.1.noarch.rpm</filename>
</package>
<package name="tomcat6-admin-webapps" version="6.0.18" release="20.5.1" arch="noarch">
<filename>tomcat6-admin-webapps-6.0.18-20.5.1.noarch.rpm</filename>
</package>
<package name="tomcat6-docs-webapp" version="6.0.18" release="20.5.1" arch="noarch">
<filename>tomcat6-docs-webapp-6.0.18-20.5.1.noarch.rpm</filename>
</package>
<package name="tomcat6-javadoc" version="6.0.18" release="20.5.1" arch="noarch">
<filename>tomcat6-javadoc-6.0.18-20.5.1.noarch.rpm</filename>
</package>
<package name="tomcat6-jsp-2_1-api" version="6.0.18" release="20.5.1" arch="noarch">
<filename>tomcat6-jsp-2_1-api-6.0.18-20.5.1.noarch.rpm</filename>
</package>
<package name="tomcat6-lib" version="6.0.18" release="20.5.1" arch="noarch">
<filename>tomcat6-lib-6.0.18-20.5.1.noarch.rpm</filename>
</package>
<package name="tomcat6-servlet-2_5-api" version="6.0.18" release="20.5.1" arch="noarch">
<filename>tomcat6-servlet-2_5-api-6.0.18-20.5.1.noarch.rpm</filename>
</package>
<package name="tomcat6-webapps" version="6.0.18" release="20.5.1" arch="noarch">
<filename>tomcat6-webapps-6.0.18-20.5.1.noarch.rpm</filename>
</package>
</collection>
</pkglist>
</update>
<update from="maint-co...@suse.de" status="stable" type="recommended" version="4361">
<id>sdksp1-tomcat6</id>
<title>Recommended update for tomcat6</title>
<release>SUSE Linux Enterprise Software Development Kit 11 SP1</release>
<issued date="1302612141" />
<references>
<reference href="" href="https://bugzilla.novell.com/show_bug.cgi?id=681914">https://bugzilla.novell.com/show_bug.cgi?id=681914" id="681914" title="bug number 681914" type="bugzilla" />
</references>
<description>
This update fixes the _expression_ Language parser.
The parser was previously unable parse expressions without additional
whitespaces - like '${not(true)}'. This is addressed in apache bug #45511.
And the last character of namespace is lost during a parsing, which makes
this feature unusable. This is apache bug #45648. Both issues are fixed by
this update.
</description>
<pkglist>
<collection>
<package name="tomcat6" version="6.0.18" release="20.23.1" arch="noarch">
<filename>tomcat6-6.0.18-20.23.1.noarch.rpm</filename>
</package>
<package name="tomcat6-admin-webapps" version="6.0.18" release="20.23.1" arch="noarch">
<filename>tomcat6-admin-webapps-6.0.18-20.23.1.noarch.rpm</filename>
</package>
<package name="tomcat6-docs-webapp" version="6.0.18" release="20.23.1" arch="noarch">
<filename>tomcat6-docs-webapp-6.0.18-20.23.1.noarch.rpm</filename>
</package>
<package name="tomcat6-javadoc" version="6.0.18" release="20.23.1" arch="noarch">
<filename>tomcat6-javadoc-6.0.18-20.23.1.noarch.rpm</filename>
</package>
<package name="tomcat6-jsp-2_1-api" version="6.0.18" release="20.23.1" arch="noarch">
<filename>tomcat6-jsp-2_1-api-6.0.18-20.23.1.noarch.rpm</filename>
</package>
<package name="tomcat6-lib" version="6.0.18" release="20.23.1" arch="noarch">
<filename>tomcat6-lib-6.0.18-20.23.1.noarch.rpm</filename>
</package>
<package name="tomcat6-servlet-2_5-api" version="6.0.18" release="20.23.1" arch="noarch">
<filename>tomcat6-servlet-2_5-api-6.0.18-20.23.1.noarch.rpm</filename>
</package>
<package name="tomcat6-webapps" version="6.0.18" release="20.23.1" arch="noarch">
<filename>tomcat6-webapps-6.0.18-20.23.1.noarch.rpm</filename>
</package>
</collection>
</pkglist>
</update>
Von: "Robert Paschedag" <robert.pasche...@web.de>
An: "Paul Robert Marino" <prmari...@gmail.com>
Cc: "spacewalk-list@redhat.com" <spacewalk-list@redhat.com>
Betreff: Re: [Spacewalk-list] Importing errata from RPM channel failes with ERROR: 'list' object has no attribute 'keys'
264 # reason it sometimes has package.id == None which makes whole import fail.
265 # And self.packages[nevrao].id contains always right value.
266 for nevrao in erratum['packages'].keys():
(Pdb) p erratum
[<spacewalk.server.importlib.importLib.Erratum instance; attributes={'advisory_name': 'sdksp1-tomcat6', 'advisory': 'sdksp1-tomcat6-4361', 'product': 'SUSE Linux Enterprise Software Development Kit 11 SP1', 'description': "\nThis update fixes the _expression_ Language parser.\n\nThe parser was previously unable parse expressions without additional \nwhitespaces - like '${not(true)}'. This is addressed in apache bug #45511. \nAnd the last character of namespace is lost during a parsing, which makes \nthis feature unusable. This is apache bug #45648. Both issues are fixed by \nthis update.\n\n", 'errata_from': 'maint-co...@suse.de', 'locally_modified': None, 'refers_to': None, 'solution': ' ', 'topic': ' ', 'last_modified': None, 'keywords': [],
Von: "Paul Robert Marino" <prmari...@gmail.com>
An: "Robert Paschedag" <robert.pasche...@web.de>
Cc: "spacewalk-list@redhat.com" <spacewalk-list@redhat.com>
Betreff: Re: Re: [Spacewalk-list] Importing errata from RPM channel failes with ERROR: 'list' object has no attribute 'keys'
Damn....looks like I got this error before upgrading to 2.7 release. Went back to snapshot (with 2.7 nightly) and this error is present. Will start to debug this.
> Gesendet: Donnerstag, 28. September 2017 um 08:31 Uhr
> Von: "Robert Paschedag" <robert.pasche...@web.de>
> An: spacewalk-list@redhat.com, "Paul Robert Marino" <prmari...@gmail.com>, "Spacewalk Userlist" <spacewalk-list@redhat.com>
> Betreff: Re: [Spacewalk-list] Importing errata from RPM channel failes with ERROR: 'list' object has no attribute 'keys'>
> Am 27. September 2017 23:58:29 MESZ schrieb Paul Robert Marino <prmari...@gmail.com>:
> >_______________________________________________
> >Spacewalk-list mailing list
> >Spacewalk-list@redhat.com
> >https://www.redhat.com/mailman/listinfo/spacewalk-list
>
> This is 2.7. Just upgraded from nightly. But I'm not sure, if I had this error within nightly as I was testing other stuff all time.
>
>
> _______________________________________________
> Spacewalk-list mailing list
> Spacewalk-list@redhat.com
> https://www.redhat.com/mailman/listinfo/spacewalk-list
>
_______________________________________________ Spacewalk-list mailing list Spacewalk-list@redhat.com https://www.redhat.com/mailman/listinfo/spacewalk-list