ubuntu/+source/tomcat8:applied/ubuntu/xenial-security

Last commit made on 2019-09-10
Get this branch:
git clone -b applied/ubuntu/xenial-security https://git.launchpad.net/ubuntu/+source/tomcat8
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/xenial-security
Repository:
lp:ubuntu/+source/tomcat8

Recent commits

aed6e23... by Maria Emilia Torino on 2019-09-09

Import patches-applied version 8.0.32-1ubuntu1.10 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: d075ed284fac52164623a8f46c71f1dc725cb9c8
Unapplied parent: 3823a8ee5cda941d851cf681f6c4cbd5d5cda414

New changelog entries:
  * SECURITY UPDATE: XSS attack on SSI printenv command
    - debian/patches/CVE-2019-0221.patch: escape debug output to aid
      readability
    - CVE-2019-0221

3823a8e... by Maria Emilia Torino on 2019-09-09

[PATCH] Escape debug output to aid readability

Gbp-Pq: CVE-2019-0221.patch.

cdf55b7... by Maria Emilia Torino on 2019-09-09

Fix class and resource name filtering in WebappClassLoader.

Gbp-Pq: fix-class-resource-name-filtering.patch.

06f5f3a... by Maria Emilia Torino on 2019-09-09

fix arbitrary redirect issue

Gbp-Pq: CVE-2018-11784.patch.

cfafde2... by Maria Emilia Torino on 2019-09-09

fix missing hostname verification in WebSocket client

Gbp-Pq: CVE-2018-8034.patch.

cafc682... by Maria Emilia Torino on 2019-09-09

fix DoS via issue in UTF-8 decoder

Gbp-Pq: CVE-2018-1336.patch.

49c0182... by Maria Emilia Torino on 2019-09-09

fix CORS filter insecure defaults

Gbp-Pq: CVE-2018-8014.patch.

b9b2a92... by Maria Emilia Torino on 2019-09-09

fix security constraint annotations applied too late

Gbp-Pq: CVE-2018-1305.patch.

1ccaeea... by Maria Emilia Torino on 2019-09-09

fix security constraints mapped to context root are ignored

Gbp-Pq: CVE-2018-1304.patch.

15c496a... by Maria Emilia Torino on 2019-09-09

fix missing checks when HTTP PUTs enabled

Gbp-Pq: CVE-2017-12617.patch.