Summary: | <www-servers/tomcat-8.5.16: Apache Tomcat Security Constraint Bypass (CVE-2017-7675) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | D'juan McDonald (domhnall) <flopwiki> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | trivial | CC: | java |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bz.apache.org/bugzilla/show_bug.cgi?id=61120 | ||
Whiteboard: | ~3 [noglsa cve] | ||
Package list: | Runtime testing required: | --- |
Description
D'juan McDonald (domhnall)
2017-08-11 03:57:48 UTC
i just cleaned the old versions yesterday and bumped 9.0.0 so we are not affected: $ equery meta tomcat * www-servers/tomcat [gentoo] Maintainer: java@gentoo.org (Java) Upstream: None specified Homepage: http://tomcat.apache.org/ Location: /usr/portage/www-servers/tomcat Keywords: 7.0.77:7: amd64 x86 Keywords: 7.0.79:7: ~amd64 ~amd64-linux ~ppc64 ~x86 ~x86-linux ~x86-solaris Keywords: 8.0.43:8: amd64 x86 Keywords: 8.0.45:8: ~amd64 ~amd64-linux ~x86 ~x86-fbsd ~x86-linux ~x86-solaris Keywords: 8.5.16:8.5: Keywords: 8.5.20:8.5: ~amd64 ~amd64-linux ~x86 ~x86-fbsd ~x86-linux ~x86-solaris Keywords: 9.0.0_alpha26:9: ~amd64 ~amd64-linux ~x86 ~x86-fbsd ~x86-linux ~x86-solaris License: Apache-2.0 @ Maintainer(s): Thank you for your work. No stable ebuild was affected, therefor no stabilization needed as part of this security bug. Repository is clean, all done. |