Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

tomcat-jsvc-7.0.27-2.9.1 RPM for noarch

From OpenSuSE 12.2 updates for noarch

Name: tomcat-jsvc Distribution: openSUSE 12.2
Version: 7.0.27 Vendor: openSUSE
Release: 2.9.1 Build date: Tue Dec 18 11:53:31 2012
Group: Productivity/Networking/Web/Servers Build host: build13
Size: 551 Source RPM: tomcat-7.0.27-2.9.1.src.rpm
Packager: http://bugs.opensuse.org
Url: http://tomcat.apache.org
Summary: Apache jsvc wrapper for Apache Tomcat as separate service
Systemd service and wrapper scripts to start tomcat with jsvc,
which allows tomcat to perform some privileged operations
(e.g. bind to a port < 1024) and then switch identity to a non-privileged user.

Provides

Requires

License

Apache-2.0

Changelog

* Mon Dec 10 2012 mvyskocil@suse.com
  - fix bnc#793394 - bypass of security constraints (CVE-2012-3546)
    * tomcat-CVE-2012-3546.patch
    http://svn.apache.org/viewvc?view=revision&revision=1377892
  - fix bnc#793391 - bypass of CSRF prevention filter (CVE-2012-4431)
    * tomcat-CVE-2012-4431.patch
    http://svn.apache.org/viewvc?view=revision&revision=1393088
* Fri Dec 07 2012 mvyskocil@suse.com
  - document how to protect against slowloris DoS (CVE-2012-5568/bnc#791679)
    in README.SUSE
* Tue Dec 04 2012 mvyskocil@suse.com
  - fixes
    bnc#791423 - cnonce tracking weakness (CVE-2012-5885)
    bnc#791424 - authentication caching weakness (CVE-2012-5886)
    bnc#791426 - stale nonce weakness (CVE-2012-5887)
    * tomcat-dont-parse-user-name-twice.patch
    http://svn.apache.org/viewvc?view=revision&revision=1366723
    * tomcat-CVE-2009-2693-CVE-2009-2901-CVE-2009-2902.patch
    http://svn.apache.org/viewvc?view=revision&revision=1377807
* Mon Nov 26 2012 mvyskocil@suse.com
  - fix bnc#789406:  HTTP NIO connector OOM DoS via a request with large
    headers (CVE-2012-2733)
    * http://svn.apache.org/viewvc?view=revision&revision=1350301
  - fix bnc#779538 - Tomcat7 default current workdir isn't /usr/share/tomcat
* Thu Jul 19 2012 mvyskocil@suse.cz
  - fix bnc#771802 - systemd support is broken
    * change type froking to simple as it does not make a sense run java in a
      background to emulate that
    * remove the need of nested wrappers, so /usr/sbin/tomcat-sysd now relies on
      systemd features like User/EnvironmentFile
    * workaround the 143 exit code in Stop phase - return 0 in this case
    * merge the jsvc into tomcat-sysd code, the -jsvc-sysd is a symlink
    * properly use jsvc with pid file to start and stop
* Wed Jun 13 2012 mvyskocil@suse.cz
  - update to 7.0.26 (bugfix release)
  - rename package to tomcat in order to emphasise a fact, there is only one
    major release of tomcat maintained in distribution
  - add manifest files and systemd support (thanks Fedora)
  - create tomcat-jsvc package
* Thu Feb 23 2012 mvyskocil@suse.cz
  - update to 7.0.26 (bugfix release)
  - fix bnc#747771 - don't use /var/lock/subsys
    sync tomcat7 init with tomcat6
* Sun Feb 19 2012 wittemar@googlemail.com
  - update to 7.0.25 (bugfix release)
* Tue Nov 01 2011 mvyskocil@suse.cz
  - update to 7.0.22 (bugfix release)
  - wrote changes and prepare for inclusion to openSUSE distribution
  - fix bnc#726307
    /etc/tomcat7 is writtable for tomcat group
* Mon Sep 19 2011 wittemar@googlemail.com
  - update to version 7.0.21
* Thu Jul 21 2011 mvyskocil@suse.cz
  - update to version 7.0.16 (bugfix update)
* Wed Mar 30 2011 jrenner@suse.de
  - add rpmlintrc, digest, init and wrapper scripts and config file
    - build require geronimo apis and wsdl4j
    - disable webservices in javadoc target
* Tue Jan 18 2011 mvyskocil@suse.cz
  - initial packaging of tomcat7 7.0.6

Files

/lib/systemd/system/tomcat-jsvc.service
/usr/sbin/tomcat-jsvc-sysd


Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Oct 10 13:14:59 2014