ubuntu/+source/tomcat8:applied/ubuntu/xenial-proposed

Last commit made on 2019-01-16
Get this branch:
git clone -b applied/ubuntu/xenial-proposed https://git.launchpad.net/ubuntu/+source/tomcat8
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/xenial-proposed
Repository:
lp:ubuntu/+source/tomcat8

Recent commits

e022327... by Karl Stenerud on 2018-12-10

8.0.32-1ubuntu1.9 (patches applied)

Imported using git-ubuntu import.

17ebf7d... by Karl Stenerud on 2018-12-10

Fix class and resource name filtering in WebappClassLoader.

Gbp-Pq: fix-class-resource-name-filtering.patch.

991ca93... by Karl Stenerud on 2018-12-10

fix arbitrary redirect issue

Gbp-Pq: CVE-2018-11784.patch.

29bf6c1... by Karl Stenerud on 2018-12-10

fix missing hostname verification in WebSocket client

Gbp-Pq: CVE-2018-8034.patch.

c1a5b71... by Karl Stenerud on 2018-12-10

fix DoS via issue in UTF-8 decoder

Gbp-Pq: CVE-2018-1336.patch.

ba506d9... by Karl Stenerud on 2018-12-10

fix CORS filter insecure defaults

Gbp-Pq: CVE-2018-8014.patch.

73566ce... by Karl Stenerud on 2018-12-10

fix security constraint annotations applied too late

Gbp-Pq: CVE-2018-1305.patch.

a677b93... by Karl Stenerud on 2018-12-10

fix security constraints mapped to context root are ignored

Gbp-Pq: CVE-2018-1304.patch.

51df0a4... by Karl Stenerud on 2018-12-10

fix missing checks when HTTP PUTs enabled

Gbp-Pq: CVE-2017-12617.patch.

21f94a2... by Karl Stenerud on 2018-12-10

fix client and server side cache poisoning in CORS filter

Gbp-Pq: CVE-2017-7674.patch.