|
|
Subscribe / Log in / New account

Oracle alert ELSA-2014-0827 (tomcat)



From:
    	      Errata Announcements for Oracle Linux <el-errata@oss.oracle.com> 


To:
    	      el-errata@oss.oracle.com 


Subject:
    	      [El-errata] ELSA-2014-0827 Moderate: Oracle Linux 7 tomcat security update 


Date:
    	      Wed, 23 Jul 2014 16:08:10 -0700


Message-ID:
    	      <53D0405A.9080604@oracle.com>


Oracle Linux Security Advisory ELSA-2014-0827

https://access.redhat.com/errata/RHSA-2014:0827.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
tomcat-7.0.42-6.el7_0.noarch.rpm
tomcat-admin-webapps-7.0.42-6.el7_0.noarch.rpm
tomcat-docs-webapp-7.0.42-6.el7_0.noarch.rpm
tomcat-el-2.2-api-7.0.42-6.el7_0.noarch.rpm
tomcat-javadoc-7.0.42-6.el7_0.noarch.rpm
tomcat-jsp-2.2-api-7.0.42-6.el7_0.noarch.rpm
tomcat-jsvc-7.0.42-6.el7_0.noarch.rpm
tomcat-lib-7.0.42-6.el7_0.noarch.rpm
tomcat-servlet-3.0-api-7.0.42-6.el7_0.noarch.rpm
tomcat-webapps-7.0.42-6.el7_0.noarch.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/tomcat-7.0.42-6.e...



Description of changes:

[0:7.0.42-6]
- Resolves: CVE-2014-0099 Fix possible overflow when parsing
- long values from byte array
- Resolves: CVE-2014-0096 Information discloser process XSLT
- files not subject to same constraint running under
- java security manager
- Resolves: CVE-2014-0075 Avoid overflow in ChunkedInputFilter.

_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds