Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: Errata Announcements for Oracle Linux <el-errata <at> oss.oracle.com>
Subject: ELSA-2013-0869 Important: Oracle Linux 6 tomcat6 security update
Newsgroups: gmane.linux.oracle.el-errata
Date: Wednesday 29th May 2013 02:00:21 UTC (over 3 years ago)
Oracle Linux Security Advisory ELSA-2013-0869

https://rhn.redhat.com/errata/RHSA-2013-0869.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
tomcat6-6.0.24-55.el6_4.noarch.rpm
tomcat6-admin-webapps-6.0.24-55.el6_4.noarch.rpm
tomcat6-docs-webapp-6.0.24-55.el6_4.noarch.rpm
tomcat6-el-2.1-api-6.0.24-55.el6_4.noarch.rpm
tomcat6-javadoc-6.0.24-55.el6_4.noarch.rpm
tomcat6-jsp-2.1-api-6.0.24-55.el6_4.noarch.rpm
tomcat6-lib-6.0.24-55.el6_4.noarch.rpm
tomcat6-servlet-2.5-api-6.0.24-55.el6_4.noarch.rpm
tomcat6-webapps-6.0.24-55.el6_4.noarch.rpm

x86_64:
tomcat6-6.0.24-55.el6_4.noarch.rpm
tomcat6-admin-webapps-6.0.24-55.el6_4.noarch.rpm
tomcat6-docs-webapp-6.0.24-55.el6_4.noarch.rpm
tomcat6-el-2.1-api-6.0.24-55.el6_4.noarch.rpm
tomcat6-javadoc-6.0.24-55.el6_4.noarch.rpm
tomcat6-jsp-2.1-api-6.0.24-55.el6_4.noarch.rpm
tomcat6-lib-6.0.24-55.el6_4.noarch.rpm
tomcat6-servlet-2.5-api-6.0.24-55.el6_4.noarch.rpm
tomcat6-webapps-6.0.24-55.el6_4.noarch.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/tomcat6-6.0.24-55.el6_4.src.rpm



Description of changes:

[0:6.0.24-55]
- Related: rhbz#955976 CVE-2013-1976. Changed log location
- so only root can use it. Touching TOMCAT_LOG is no longer
- required

[0:6.0.24-54]
- Resolves: rhbz#956771 Related: CVE-2012-3439 digest
- authentication broken after errata for cve-2012-3439
- patch for 3439 corrected

[0:6.0.24-53]
- Resolves: rhbz#955976 CVE-2013-1976 improper TOMCAT_LOG
- management in init script
 
CD: 3ms