[Bug 2155105] Re: Historical inconsistencies with server packages

Sun, 07 Jun 2026 09:40:50 -0700 

This bug was fixed in the package tomcat10 - 10.1.55-1ubuntu1

---------------
tomcat10 (10.1.55-1ubuntu1) stonking; urgency=medium

  * Merge with Debian unstable (LP: #2155606). Remaining changes:
    - Restored tomcat10 server packages since dropped in 10.1.52-2
      (LP: 2154326)
      + Depend on libtcnative-2 instead of libtcnative-1
    - Added autopkgtest integrations:
      + Smoke-tests for default webapp and tomcat-native.
      + Enabled JUnit testing to work with autopkgtest.
  * New Changes:
    - Install jakartaee-migration-shaded.jar into the Tomcat lib directory
      (Closes: #1108280)
    - Fixed up various bugs due to historical packaging.
      Thanks to Utkarsh Gupta <[email protected]> (LP: #2155105)
      + debian/sysuser/tomcat11.conf: User home directory was inconsistent
        with CATALINA_BASE, changed to /nonexistent
      + debian/tomcat11.dirs: Removed empty dir creation of etc/logrotate.d
        as it is handled by ucf from template
      + debian/tomcat11.postrm.in: Added leading / to
        /var/lib/tomcat11/lib/classes since should be an absolute path
      + debian/README.Debian: Added some comments regarding historical
        packaging notes.
        - tomcat user is shared by tomcatXX packages
        - tomcat log rotation

tomcat10 (10.1.55-1) unstable; urgency=medium

  * New upstream version 10.1.55.
    - The source package includes the security fixes for the following reported
      vulnerabilities: CVE-2026-41284, CVE-2026-41293, CVE-2026-42498,
      CVE-2026-43512, CVE-2026-43513, CVE-2026-43514, CVE-2026-43515.
      Debian dropped the server packages in 10.1.52-2 thus these issues are no
      longer relevant for sid and forky.
  * Refresh the patches.

 -- Reuben Roessler <[email protected]>  Fri, 05 Jun 2026
09:31:03 +1000

** Changed in: tomcat10 (Ubuntu)
       Status: In Progress => Fix Released

** CVE added: https://cve.org/CVERecord?id=CVE-2026-41284

** CVE added: https://cve.org/CVERecord?id=CVE-2026-41293

** CVE added: https://cve.org/CVERecord?id=CVE-2026-42498

** CVE added: https://cve.org/CVERecord?id=CVE-2026-43512

** CVE added: https://cve.org/CVERecord?id=CVE-2026-43513

** CVE added: https://cve.org/CVERecord?id=CVE-2026-43514

** CVE added: https://cve.org/CVERecord?id=CVE-2026-43515

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2155105

Title:
  Historical inconsistencies with server packages

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/tomcat10/+bug/2155105/+subscriptions


-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to