ubuntu/+source/tomcat8:applied/ubuntu/xenial-proposed

Last commit made on 2019-01-16
Get this branch:
git clone -b applied/ubuntu/xenial-proposed https://git.launchpad.net/ubuntu/+source/tomcat8
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/xenial-proposed
Repository:
lp:ubuntu/+source/tomcat8

Recent commits

d075ed2... by Karl Stenerud on 2018-12-10

Import patches-applied version 8.0.32-1ubuntu1.9 to applied/ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 260b08ffc3b4689a7f5f1b31045dfbd2f6704f28
Unapplied parent: abf130027e9cd47acdac05a0ab7c3248c15880d4

New changelog entries:
  * d/p/fix-class-resource-name-filtering.patch: Fix class and resource name
    filtering in WebappClassLoader (LP: #1606331).

abf1300... by Karl Stenerud on 2018-12-10

Fix class and resource name filtering in WebappClassLoader.

Gbp-Pq: fix-class-resource-name-filtering.patch.

523b47a... by Karl Stenerud on 2018-12-10

fix arbitrary redirect issue

Gbp-Pq: CVE-2018-11784.patch.

2064476... by Karl Stenerud on 2018-12-10

fix missing hostname verification in WebSocket client

Gbp-Pq: CVE-2018-8034.patch.

30a6d22... by Karl Stenerud on 2018-12-10

fix DoS via issue in UTF-8 decoder

Gbp-Pq: CVE-2018-1336.patch.

20fad84... by Karl Stenerud on 2018-12-10

fix CORS filter insecure defaults

Gbp-Pq: CVE-2018-8014.patch.

8101b1e... by Karl Stenerud on 2018-12-10

fix security constraint annotations applied too late

Gbp-Pq: CVE-2018-1305.patch.

84faed4... by Karl Stenerud on 2018-12-10

fix security constraints mapped to context root are ignored

Gbp-Pq: CVE-2018-1304.patch.

360433d... by Karl Stenerud on 2018-12-10

fix missing checks when HTTP PUTs enabled

Gbp-Pq: CVE-2017-12617.patch.

cf64806... by Karl Stenerud on 2018-12-10

fix client and server side cache poisoning in CORS filter

Gbp-Pq: CVE-2017-7674.patch.