Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 865847 - www-servers/tomcat-{8.5.82,9.0.65,10.0.23}: please stabilize (security)
Summary: www-servers/tomcat-{8.5.82,9.0.65,10.0.23}: please stabilize (security)
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Stabilization (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Java team
URL:
Whiteboard:
Keywords: CC-ARCHES, SECURITY, STABLEREQ
Depends on:
Blocks: CVE-2022-34305
  Show dependency tree
 
Reported: 2022-08-20 06:27 UTC by Miroslav Šulc
Modified: 2022-08-21 05:47 UTC (History)
0 users

See Also:
Package list:
www-servers/tomcat-8.5.82 amd64 www-servers/tomcat-9.0.65 amd64 www-servers/tomcat-10.0.23 amd64 dev-java/tomcat-servlet-api-8.5.82 dev-java/tomcat-servlet-api-9.0.65 dev-java/tomcat-servlet-api-10.0.23
Runtime testing required: ---
nattka: sanity-check+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Miroslav Šulc gentoo-dev 2022-08-20 06:27:59 UTC 
commit 27228226e11fba6757c3a09fe4af1f777744f533
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Sat Aug 13 18:07:36 2022 +0200

    www-servers/tomcat: bump to 8.5.82
    
    Bug: https://bugs.gentoo.org/855971
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

commit d608a1cef41b0e55053383ce7e0baef38c782ce0
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Sat Aug 13 18:07:08 2022 +0200

    dev-java/tomcat-servlet-api: bump to 8.5.82
    
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

commit c470f5e10c7fa9f8398f206376718cc65785b6b0
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Tue Jul 26 19:52:17 2022 +0200

    www-servers/tomcat: bump to 10.0.23
    
    Bug: https://bugs.gentoo.org/855971
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

commit d1aece6a2d767e933aa6ef421c5e3802df20782a
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Tue Jul 26 19:51:55 2022 +0200

    dev-java/tomcat-servlet-api: bump to 10.0.23
    
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

commit 5751812bf9042cfd2a4129cef26a56c931205e1c
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Thu Jul 21 05:33:17 2022 +0200

    www-servers/tomcat: bump to 9.0.65
    
    Bug: https://bugs.gentoo.org/855971
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

commit edf59fdcfbf1086a8360e86ff058cc2c165e2292
Author: Miroslav Šulc <fordfrog@gentoo.org>
Date:   Thu Jul 21 05:32:39 2022 +0200

    dev-java/tomcat-servlet-api: bump to 9.0.65
    
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>
Comment 1 Arthur Zamarin archtester Gentoo Infrastructure gentoo-dev Security 2022-08-20 08:45:36 UTC 
ppc64 done
Comment 2 Arthur Zamarin archtester Gentoo Infrastructure gentoo-dev Security 2022-08-20 08:45:38 UTC 
arm64 done
Comment 3 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2022-08-20 23:01:48 UTC 
amd64 done
Comment 4 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2022-08-20 23:02:38 UTC 
x86 done

all arches done
Comment 5 Larry the Git Cow gentoo-dev 2022-08-21 05:47:42 UTC 
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=99b0ea9db99b33526acd6557de1570033a0adfff

commit 99b0ea9db99b33526acd6557de1570033a0adfff
Author:     Miroslav Šulc <fordfrog@gentoo.org>
AuthorDate: 2022-08-21 05:47:24 +0000
Commit:     Miroslav Šulc <fordfrog@gentoo.org>
CommitDate: 2022-08-21 05:47:24 +0000

    www-servers/tomcat: dropped obsolete and vulnerable 10.0.22, 9.0.64 & 8.5.81
    
    Bug: https://bugs.gentoo.org/865847
    Bug: https://bugs.gentoo.org/855971
    Signed-off-by: Miroslav Šulc <fordfrog@gentoo.org>

 www-servers/tomcat/Manifest              |   3 -
 www-servers/tomcat/tomcat-10.0.22.ebuild | 198 -------------------------------
 www-servers/tomcat/tomcat-8.5.81.ebuild  | 159 -------------------------
 www-servers/tomcat/tomcat-9.0.64.ebuild  | 190 -----------------------------
 4 files changed, 550 deletions(-)