Summary: | www-servers/tomcat: information leak (CVE-2010-1157) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Stefan Behte (RETIRED) <craig> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | betelgeuse, henson, java, mike |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://tomcat.apache.org/security-6.html | ||
Whiteboard: | B4 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Stefan Behte (RETIRED)
2010-05-21 21:58:29 UTC
*** Bug 327711 has been marked as a duplicate of this bug. *** We now have 6.0.28. I think we should start deprecating 5.5 as we don't have anyone interested in maintaining it. Do you do the masking? Someone please mask, I cannot do it. 5.5 is still considered production upstream and there are still apps that require it :(. It would be nice to have a current version in portage. I tried to make a .31 ebuild myself but had some weird compilation failures that my limited java skills couldn't make sense of. For somebody who knew what they were doing ;) it probably wouldn't take much time to whip out a new working ebuild... *** This bug has been marked as a duplicate of bug 329937 *** This issue was resolved and addressed in GLSA 201206-24 at http://security.gentoo.org/glsa/glsa-201206-24.xml by GLSA coordinator Tobias Heinlein (keytoaster). |