Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Evergreen:11.2
libtcnative-1-0
tomcat6.changes
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File tomcat6.changes of Package libtcnative-1-0
------------------------------------------------------------------- Fri Feb 11 09:22:25 UTC 2011 - mvyskocil@suse.cz - fix bnc#669897 - VUL-0: tomcat6: Apache Tomcat Local bypass of security manger file permissions (CVE-2010-3781) * http://svn.apache.org/viewvc?view=revision&revision=1022560 - fix bnc#669929 - VUL-0: tomcat6: Apache Tomcat Manager XSS vulnerability (CVE-2011-0013) * http://svn.apache.org/viewvc?view=revision&revision=1057270 - fix bnc#669930 - VUL-0: tomcat6: Apache Tomcat DoS vulnerability (CVE-2011-0534) * http://svn.apache.org/viewvc?view=revision&revision=1066313 ------------------------------------------------------------------- Mon Jan 31 08:40:31 UTC 2011 - mvyskocil@suse.cz - apply the patch for CVE-2010-4172 ------------------------------------------------------------------- Mon Jan 17 15:03:16 UTC 2011 - mvyskocil@suse.cz - fix bnc#655440#c14 - clean workdir of tomcat6's webapps ------------------------------------------------------------------- Wed Nov 24 13:14:01 UTC 2010 - mvyskocil@suse.cz - fix bnc#655440 - VUL-0: tomcat6: Apache Tomcat Manager application XSS vulnerability (CVE-2010-4172) http://svn.apache.org/viewvc?view=revision&revision=1037779 ------------------------------------------------------------------- Thu Jul 15 12:49:11 UTC 2010 - mvyskocil@suse.cz - fix bnc#599554: VUL-1: tomcat information disclosure (CVE-2010-1157) * http://svn.apache.org/viewvc?view=revision&revision=936540 - fix bnc#622188: VUL-0: tomcat: remote DoS / information disclosure (CVE-2010-2227) * http://svn.apache.org/viewvc?view=revision&revision=958977 - link dtomcat6 to CATALINA_HOME/bin/catalina.sh ------------------------------------------------------------------- Thu Feb 4 10:13:38 UTC 2010 - mvyskocil@suse.cz - fixed bnc#575083 - VUL-0: tomcat directoy traversal bugs CVE-2009-2693, CVE-2009-2901, CVE-2009-2902 * http://svn.apache.org/viewvc?view=revision&revision=892815 ------------------------------------------------------------------- Wed Sep 30 08:01:35 UTC 2009 - mvyskocil@suse.cz - fixed bnc#542634: Tomcat NPE on start applied patch from upstream bugzilla https://issues.apache.org/bugzilla/show_bug.cgi?id=47316#c3 ------------------------------------------------------------------- Wed Aug 26 13:01:22 UTC 2009 - mvyskocil@suse.cz - fixed bnc#520532: marked all webapp/ROOT/* files as config(noreplace) - marked /etc/ant.d/catalina-ant as config(noreplace) ------------------------------------------------------------------- Mon Jun 15 09:09:12 CEST 2009 - mvyskocil@suse.cz - added a missing -p1 for %patch0 ------------------------------------------------------------------- Wed Jun 3 10:39:19 CEST 2009 - mvyskocil@suse.cz - fixed bnc#488061: work directory clean on tomcat stop - update to 6.0.20 - the bugfix release: * MemoryUserDatabase is read-only by default * Allow huge request body packets for AJP13 * Never return an empty HTTP status reason phrase * Prevent double initialisation of JSPs * A node should ignore its own heartbeat messages * Prettry error messages (instead of stacktrace) if shutdown port is disabled ------------------------------------------------------------------- Mon Mar 16 15:57:55 CET 2009 - mvyskocil@suse.cz - fixed bnc#418664 - Tomcat6 installation has missing bits - added /etc/ant.d/catalina-ant - another fix for bnc#471639 - tomcat does not start/work * merged a sysconfig and tomcat6.conf to allow a dtomcat6 start works * also fixs (bnc#471639) - fixed bnc#424675 - Access rights to /etc/tomcat6 directory not set right * create a link from /etc/tomcat6/Catalina to /var/cache/tomcat6/Catalina - removed a CATALINA_OPTS from stop in dtcomcat6 (bao#42951) ------------------------------------------------------------------- Wed Feb 25 14:31:44 CET 2009 - mvyskocil@suse.cz - fixed bnc#471301: tomcat6 doesn't want to be started when sun java 1.5 is selected - built with -target 1.5 ------------------------------------------------------------------- Mon Feb 9 16:50:07 CET 2009 - mvyskocil@suse.cz - Fixed bnc#471639 - tomcat does not start/work - fill up a default JVM in sysconfig - changed a default JAVA_HOME from JRE to SDK in config ------------------------------------------------------------------- Mon Nov 24 14:05:10 CET 2008 - mvyskocil@suse.cz - Fixed bnc#446598 - Tomcat6: tomcat6.conf overwrites sysconfig/tomcat6 values ------------------------------------------------------------------- Fri Sep 12 09:28:26 CEST 2008 - mvyskocil@suse.cz - Update to 6.0.18. This obsoletes patches: apache-tomcat-CVE-2008-1232 apache-tomcat-CVE-2008-1947 apache-tomcat-CVE-2008-2370 apache-tomcat-CVE-2008-2938 ------------------------------------------------------------------- Tue Aug 19 13:16:48 CEST 2008 - mvyskocil@suse.cz - fix CVE-2008-2938: VUL-0: tomcat5: directory traversal ------------------------------------------------------------------- Wed Aug 6 11:11:58 CEST 2008 - mvyskocil@suse.cz - fix CVE-2008-1232 and CVE-2008-2370: VUL-0: Apache Tomcat Cross-Site Scripting and Security Bypass [bnc#414657] ------------------------------------------------------------------- Mon Jul 21 15:45:27 CEST 2008 - mvyskocil@suse.cz - fixed [bnc#394503]: tomcat6 is missing rctomcat6 link - add a /usr/sbin/rctomcat6 symlink - and heavy rewrite and improve of original jpackage tomcat6 init script - add Should-Start and Should-Stop section and values for Default-Start and Default-Stop - removed the echo_success and echo_failure functions and usage - include a /etc/rc.status and use a rc_XXXXX functions instead of echo and return. Plus add a comments with error codes explanations - merge the start/stop/status messages from previous version - use `ps' command instead of pgrep - changes in commands: added a try-restart|force-reload|reload|probe and removed the version|conrestart - fixed [bnc#394499]: add a PreReq to jpackage-utils - fixed [bnc#408253]: tomcat6 fails because if missing commons-xxxx jars - add a removed dependencies to the jakarta-commons-*-tomcat5 packages - fixed a proper link creation in post/n scripts - fixed a build cycle, jakarta-commons-dbcp-tomcat5 needs the tomcat6-lib for build, but the tomcat6-lib has this package in Requires(post). The %post scripplet is non-fatal if the jars cannot be found (but this would not happens in a production state). ------------------------------------------------------------------- Fri Jun 27 14:47:03 CEST 2008 - mvyskocil@suse.cz - fixed [bnc#396962]: VUL-0: tomcat5: [SECURITY] CVE-2008-1947: Tomcat host-manager XSS vulnerability - fixed [bnc#403310]: Tomcat startup script uses wrong java.io.tmpdir - the temp directory is in /var/cache/tomcat6/temp ------------------------------------------------------------------- Tue May 6 10:12:07 CEST 2008 - mvyskocil@suse.cz - fixed a [bnc#383331] - Tomcat cannot compile JSPs - add a ecj requires for tomcat6-lib - create a symlink of ecj.jar to tomcat6 libdir - add a jakarta-taglibs-standard to BuildRequires - use a fdupes to avoid a file duplication waste in /srv - replace a %{_jvmdir}/jre to /etc/alternatives/jre in JAVAHOME in default tomcat6.conf (this path is architecture independent) - add a %stop_on_removal to %preun, %restart_on_update and %insserv_cleanup to %postun to fix some rpmlint warnings - add a $remote_fs dependency to init script ------------------------------------------------------------------- Wed Feb 27 10:53:38 CET 2008 - mvyskocil@suse.cz - update to 6.0.16 ------------------------------------------------------------------- Fri Jan 25 18:26:09 CET 2008 - coolo@suse.de - don't require the old package names ------------------------------------------------------------------- Fri Jan 25 15:42:30 CET 2008 - ro@suse.de - don't use dots in package names ------------------------------------------------------------------- Tue Jan 22 12:22:00 CET 2008 - anosek@suse.cz - don't use macros in package names (the %package lines) which does not work with autobuild. ------------------------------------------------------------------- Thu Dec 20 08:36:29 CET 2007 - anosek@suse.cz - don't use static uid/gid for tomcat user and tomcat group ------------------------------------------------------------------- Tue Dec 4 10:00:49 CET 2007 - anosek@suse.cz - initial version of tomcat6 package - based on work by jpackage project
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor