Ubuntu
tomcat6 package

ubuntu/+source/tomcat6:applied/ubuntu/trusty-devel

  1. Git
  2. lp:ubuntu/+source/tomcat6
  3. applied/ubuntu/trusty-devel
Last commit made on 2018-10-17
Get this branch:
git clone -b applied/ubuntu/trusty-devel https://git.launchpad.net/ubuntu/+source/tomcat6
Members of git-ubuntu import can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/trusty-devel
Repository:
lp:ubuntu/+source/tomcat6

Recent commits

6e6053b... by Eduardo Barretto

6.0.39-1ubuntu0.1 (patches applied)

Imported using git-ubuntu import.

b802784... by Eduardo Barretto

Allow the global naming context to be reset. Useful when running multiple embedded instances in series since it allows each instance to configure its own global naming context.

Gbp-Pq: CVE-2016-0763.patch.

9f20fab... by Eduardo Barretto

Make timing attacks against the Realm implementations harder. (schultz/markt)

Gbp-Pq: CVE-2016-0762.patch.

980a675... by Eduardo Barretto

When using the new sessionAttributeValueClassNameFilter, apply the filter earlier rather than loading the class and then deciding to filter it out.

Gbp-Pq: CVE-2016-0714-2.patch.

d673b07... by Eduardo Barretto

Expand the session attribute filtering options

Gbp-Pq: CVE-2016-0714-1.patch.

e4c2645... by Eduardo Barretto

Add the StatusManagerServlet to the list of Servlets that can only be loaded by privileged applications.

Gbp-Pq: CVE-2016-0706.patch.

1e2e156... by Eduardo Barretto

Don't create session unnecessarily in the Host Manager application

Gbp-Pq: CVE-2015-5351-2.patch.

c74a363... by Eduardo Barretto

Don't create sessions unnecessarily in the Manager application.

Gbp-Pq: CVE-2015-5351-1.patch.

9567ef9... by Eduardo Barretto

Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=58660

Gbp-Pq: CVE-2015-5345-2.patch.

d25676a... by Eduardo Barretto

Move the functionality that provides redirects for context roots and directories where a trailing <code>/</code> is added from the Mapper to the DefaultServlet. This enables such requests to be processed by any configured Valves and Filters before the redirect is made. This behaviour is configurable via the mapperContextRootRedirectEnabled and mapperDirectoryRedirectEnabled attributes of the Context which may be used to restore the previous behaviour.

Gbp-Pq: CVE-2015-5345-1.patch.