lp:ubuntu/trusty/tomcat5.5

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

16. By Thierry Carrez on 2008-11-18

* Merge from debian unstable (LP: #298043), remaining changes:
  - debian/control: add libecj-java builddep to fix FTBFS with default-jdk
  - debian/rules: Set java source and target version to 1.5
  - debian/rules: Don't fail install if Tomcat cannot be started
  - debian/tomcat5.5.init: Fix JVM list to match java2-runtime-headless
    providers, and do not refuse using JREs
  - debian/tomcat5.5.install: Don't install catalina.policy
* debian/changelog: Removed duplicate entries
* debian/tomcat5.5.init: Added LSB exit codes to status action (LP: #298051)
* debian/rules: dropped Ubuntu-specific TearDown implementation which might
  break LifecycleListener

15. By Thierry Carrez on 2008-10-20

Set java source and target version to 1.5 (LP: #264808)

14. By Thierry Carrez on 2008-09-29

Don't fail install if Tomcat cannot be started (LP: #274365, LP: #212536)

13. By Thierry Carrez on 2008-09-10

* Fix tomcat5.5 Java environment to match status of Java in intrepid:
  - control: Moved Java runtime deps to libtomcat5.5-java
  - control: Depends on default-jre-headless | java2-runtime-headless
  - tomcat5.5.init: Fix JVM list to match java2-runtime-headless
  - rules, control: Builds with default-jdk, libecj-java build-dep added
  - Fixes LP: #212521, LP: #179447
* tomcat5.5.postinst: Removed superfluous /etc/tomcat5.5/tomcat5.5 linking
* rules, tomcat5.5.init: implement TearDown spec
* tomcat5.5.install: don't install catalina.policy (LP: #112626)
* Fix CVE-2008-1232 cross-site scripting vulnerability (LP: #256926)
* Fix CVE-2008-2370 information disclosure vulnerability (LP: #256922)
* Fix CVE-2008-2938 directory traversal (LP: #256802)

12. By Michael Koch on 2008-06-06

CVE-2008-1947: Fix XSS issue in host-manager web application.
Closes: #484643

11. By Michael Koch on 2008-06-01

Fixed bootstrap.MF to put commons-logging-api.jar onto classpath instead
of commons-logging-api-1.1.1.jar. Closes: #477363

10. By Michael Koch on 2008-04-19

[ Michael Koch ]
* New upstream release.
  - CVE-2007-5333: unauthorized disclosure of information. Closes: #465645
  - CVS-2007-6286: handling of empty requests.
* debian/rules: Don't file when files to delete don't exist.
  Closes: #458977
* debian/tomcat5.5.init: Change directory to $CATALINA_BASE/temp before
  starting the daemon. Patch by David Pashley. Closes: #418826
* debian/tomcat5.5.init: Use 'printf' instead of 'echo -e'.
  Closes: #472899

[ Marcus Better ]
* debian/policy/04webapps.policy: Grant read permission to JULI for the
  (non-existing) logging.properties file in the example webapps. Closes:
  #460839.

9. By Matti Lindell <email address hidden> on 2008-01-03

* Merge from Debian unstable (LP: #153672, LP: #159661, LP: #161882,
  LP: #173692, LP: #179491), remaining changes:
  - debian/control: Change the Maintainer address.
  - debian/rules: Force flag passed to rm to `prune files that should not be
    installed at all'.

8. By Philipp Kern on 2007-10-08

* Merged from Debian revision 5.5.25-1; remaining Ubuntu changes:
  - Modified build-deps.
  - Force flag passed to rm to `prune files that should not be
    installed at all'.
* This fixes CVE-2007-1355, CVS-2007-2449 and CVE-2007-2450
  (LP: #150755).

7. By Steve Kowalik on 2007-08-07

Replace the Depends on ecj-bootstrap with ecj.