Accepting request 928113 from home:mbussolotto:branches:Java:packages

- Fixed CVEs: * CVE-2021-30640: Escape parameters in JNDI Realm queries (bsc#1188279) * CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients (bsc#1188278) * CVE-2021-41079: Validate incoming TLS packet (bsc#1190558) - Added patches: * tomcat-9.0-CVE-2021-30640.patch * tomcat-9.0-CVE-2021-33037.patch * tomcat-9.0-CVE-2021-41079.patch OBS-URL: https://build.opensuse.org/request/show/928113 OBS-URL: https://build.opensuse.org/package/show/Java:packages/tomcat?expand=0&rev=229
2021-11-10 08:18:07 +00:00
parent 45332d7d33
commit eb7ec9843b
5 changed files with 2940 additions and 0 deletions
--- a/tomcat.spec
+++ b/tomcat.spec
@@ -83,6 +83,9 @@ Patch4:         tomcat-9.0-osgi-build.patch
 Patch5:         tomcat-9.0.43-java8compat.patch
 # PATCH-FIX-OPENSUSE: set ajp connector secreteRequired to false by default to avoid tomcat not starting
 Patch6:         tomcat-9.0.31-secretRequired-default.patch
+Patch7:         tomcat-9.0-CVE-2021-41079.patch
+Patch8:         tomcat-9.0-CVE-2021-33037.patch
+Patch9:         tomcat-9.0-CVE-2021-30640.patch

 BuildRequires:  ant >= 1.8.1
 BuildRequires:  ant-antlr
@@ -257,6 +260,9 @@ find . -type f \( -name "*.bat" -o -name "*.class" -o -name Thumbs.db -o -name "
 %patch4 -p1
 %patch5 -p1
 %patch6 -p1
+%patch7 -p1
+%patch8 -p1
+%patch9 -p1

 # remove date from docs
 sed -i -e '/build-date/ d' webapps/docs/tomcat-docs.xsl