865847 – www-servers/tomcat-{8.5.82,9.0.65,10.0.23}: please stabilize (security)

Bug 865847 - www-servers/tomcat-{8.5.82,9.0.65,10.0.23}: please stabilize (security)

Summary: www-servers/tomcat-{8.5.82,9.0.65,10.0.23}: please stabilize (security)

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Stabilization (show other bugs)
Hardware:	All Linux

Importance:	Normal normal
Assignee:	Java team

URL:
Whiteboard:
Keywords:	CC-ARCHES, SECURITY, STABLEREQ

Depends on:
Blocks:	CVE-2022-34305
	Show dependency tree

Reported:	2022-08-20 06:27 UTC by Miroslav Šulc
Modified:	2022-08-21 05:47 UTC (History)
CC List:	0 users

See Also:
Package list:	www-servers/tomcat-8.5.82 amd64 www-servers/tomcat-9.0.65 amd64 www-servers/tomcat-10.0.23 amd64 dev-java/tomcat-servlet-api-8.5.82 dev-java/tomcat-servlet-api-9.0.65 dev-java/tomcat-servlet-api-10.0.23
Runtime testing required:	---

Flags:	nattka: sanity-check+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Miroslav Šulc gentoo-dev

2022-08-20 06:27:59 UTC

commit 27228226e11fba6757c3a09fe4af1f777744f533
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Sat Aug 13 18:07:36 2022 +0200

    www-servers/tomcat: bump to 8.5.82
    
    Bug: https://bugs.gentoo.org/855971
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

commit d608a1cef41b0e55053383ce7e0baef38c782ce0
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Sat Aug 13 18:07:08 2022 +0200

    dev-java/tomcat-servlet-api: bump to 8.5.82
    
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

commit c470f5e10c7fa9f8398f206376718cc65785b6b0
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Tue Jul 26 19:52:17 2022 +0200

    www-servers/tomcat: bump to 10.0.23
    
    Bug: https://bugs.gentoo.org/855971
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

commit d1aece6a2d767e933aa6ef421c5e3802df20782a
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Tue Jul 26 19:51:55 2022 +0200

    dev-java/tomcat-servlet-api: bump to 10.0.23
    
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

commit 5751812bf9042cfd2a4129cef26a56c931205e1c
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Thu Jul 21 05:33:17 2022 +0200

    www-servers/tomcat: bump to 9.0.65
    
    Bug: https://bugs.gentoo.org/855971
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

commit edf59fdcfbf1086a8360e86ff058cc2c165e2292
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Thu Jul 21 05:32:39 2022 +0200

    dev-java/tomcat-servlet-api: bump to 9.0.65
    
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

Comment 1 Arthur Zamarin archtester

2022-08-20 08:45:36 UTC

ppc64 done

Comment 2 Arthur Zamarin archtester

2022-08-20 08:45:38 UTC

arm64 done

Comment 3 Sam James archtester

2022-08-20 23:01:48 UTC

amd64 done

Comment 4 Sam James archtester

2022-08-20 23:02:38 UTC

x86 done

all arches done

Comment 5 Larry the Git Cow gentoo-dev

2022-08-21 05:47:42 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=99b0ea9db99b33526acd6557de1570033a0adfff

commit 99b0ea9db99b33526acd6557de1570033a0adfff
Author:     Miroslav Šulc <fordfrog@gentoo.org>
AuthorDate: 2022-08-21 05:47:24 +0000
Commit:     Miroslav Šulc <fordfrog@gentoo.org>
CommitDate: 2022-08-21 05:47:24 +0000

    www-servers/tomcat: dropped obsolete and vulnerable 10.0.22, 9.0.64 & 8.5.81
    
    Bug: https://bugs.gentoo.org/865847
    Bug: https://bugs.gentoo.org/855971
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

 www-servers/tomcat/Manifest              |   3 -
 www-servers/tomcat/tomcat-10.0.22.ebuild | 198 -------------------------------
 www-servers/tomcat/tomcat-8.5.81.ebuild  | 159 -------------------------
 www-servers/tomcat/tomcat-9.0.64.ebuild  | 190 -----------------------------
 4 files changed, 550 deletions(-)