Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > linux.debian.maint.java > #9141
| From | Markus Koschany <apo@debian.org> |
|---|---|
| Newsgroups | linux.debian.maint.java |
| Subject | Tomcat 8 security update |
| Date | 2016-05-30 00:20 +0200 |
| Message-ID | <rEhdU-3M0-21@gated-at.bofh.it> (permalink) |
| Organization | linux.* mail to news gateway |
[Multipart message — attachments visible in raw view] - view raw
Hi, I have prepared a security update for Tomcat 8 fixing 7 CVEs. In addition I would like to fix #825786. We currently overwrite file permissions in /etc/tomcat8/ unconditionally which could break user specific changes on upgrade. The fix is to revert to default file permissions root:root (rw-r-r) and change only /etc/tomcat8/tomcat-users.xml. Regards, Markus
Back to linux.debian.maint.java | Previous | Next — Next in thread | Find similar
Tomcat 8 security update Markus Koschany <apo@debian.org> - 2016-05-30 00:20 +0200
Re: Tomcat 8 security update Emmanuel Bourg <ebourg@apache.org> - 2016-05-30 01:10 +0200
Re: Tomcat 8 security update Markus Koschany <apo@debian.org> - 2016-05-30 01:30 +0200
Re: Tomcat 8 security update Emmanuel Bourg <ebourg@apache.org> - 2016-05-30 08:50 +0200
Re: Tomcat 8 security update Moritz Muehlenhoff <jmm@inutil.org> - 2016-05-30 09:00 +0200
csiph-web