pool/tomcat
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Accepting request 1121130 from home:mbussolotto:branches:Java:packages

Browse Source 
Add info to the current changelog
  * Fixed CVEs:
    + CVE-2023-45648: Improve trailer header parsing (bsc#1216118)
    + CVE-2023-42794: FileUpload: remove tmp files to avoid DoS 
      on Windows (bsc#1216120)
    + CVE-2023-42795: Improve handling of failures during recycle()
      methods (bsc#1216119)

OBS-URL: https://build.opensuse.org/request/show/1121130
OBS-URL: https://build.opensuse.org/package/show/Java:packages/tomcat?expand=0&rev=279
This commit is contained in:
Fridrich Strba 2023-10-30 10:54:18 +00:00 committed by Git OBS Bridge
parent bce8682351
commit 0e5a696eed
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
tomcat.changes
View File

@ -2,6 +2,12 @@
Fri Oct 13 11:12:07 UTC 2023 - Fridrich Strba <fstrba@suse.com>
- Update to Tomcat 9.0.82
* Fixed CVEs:
+ CVE-2023-45648: Improve trailer header parsing (bsc#1216118)
+ CVE-2023-42794: FileUpload: remove tmp files to avoid DoS
on Windows (bsc#1216120)
+ CVE-2023-42795: Improve handling of failures during recycle()
methods (bsc#1216119)
* Catalina
+ Add: 65770: Provide a lifecycle listener that will
automatically reload TLS configurations a set time before the