Publishing details

Published on 2019-09-10
Copied from ubuntu bionic in Private PPA for Ubuntu Security Team by Emilia Torino

Changelog

tomcat8 (8.5.39-1ubuntu1~18.04.3) bionic-security; urgency=medium

  * SECURITY UPDATE: XSS attack on SSI printenv command
    - debian/patches/CVE-2019-0221.patch: escape debug output to aid
      readability
    - CVE-2019-0221
  * SECURITY UPDATE: DoS via thread exhaustion
    - debian/patches/CVE-2019-10072-1.patch: expand HTTP/2 timeout
      handling to connection window exhaustion on write.
    - debian/patches/CVE-2019-10072-2.patch: Fix test failures. Handle
      full allocation case.
    - CVE-2019-10072

 -- Emilia Torino <email address hidden>  Mon, 09 Sep 2019 16:47:51 -0300

Available diffs

Builds

amd64

Built packages

libtomcat8-embed-java Apache Tomcat 8 - Servlet and JSP engine -- embed libraries

libtomcat8-java Apache Tomcat 8 - Servlet and JSP engine -- core libraries

tomcat8 Apache Tomcat 8 - Servlet and JSP engine

tomcat8-admin Apache Tomcat 8 - Servlet and JSP engine -- admin web applications

tomcat8-common Apache Tomcat 8 - Servlet and JSP engine -- common files

tomcat8-docs Apache Tomcat 8 - Servlet and JSP engine -- documentation

tomcat8-examples Apache Tomcat 8 - Servlet and JSP engine -- example web applications

tomcat8-user Apache Tomcat 8 - Servlet and JSP engine -- tools to create user instances

Package files

libtomcat8-embed-java_8.5.39-1ubuntu1~18.04.3_all.deb (3.8 MiB)
libtomcat8-java_8.5.39-1ubuntu1~18.04.3_all.deb (4.8 MiB)
tomcat8-admin_8.5.39-1ubuntu1~18.04.3_all.deb (27.3 KiB)
tomcat8-common_8.5.39-1ubuntu1~18.04.3_all.deb (57.9 KiB)
tomcat8-docs_8.5.39-1ubuntu1~18.04.3_all.deb (638.3 KiB)
tomcat8-examples_8.5.39-1ubuntu1~18.04.3_all.deb (376.1 KiB)
tomcat8-user_8.5.39-1ubuntu1~18.04.3_all.deb (35.4 KiB)
tomcat8_8.5.39-1ubuntu1~18.04.3.debian.tar.xz (47.1 KiB)
tomcat8_8.5.39-1ubuntu1~18.04.3.dsc (2.7 KiB)
tomcat8_8.5.39-1ubuntu1~18.04.3_all.deb (45.3 KiB)
tomcat8_8.5.39.orig.tar.xz (3.3 MiB)