Bug 675795
Summary: | CVE-2011-0013 CVE-2010-3718 tomcat5 various flaws [fedora-all] | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Vincent Danen <vdanen> |
Component: | tomcat5 | Assignee: | Devrim Gündüz <devrim> |
Status: | CLOSED WONTFIX | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 14 | CC: | devrim, djorm, dknox, dwalluck |
Target Milestone: | --- | Keywords: | Security, SecurityTracking |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Release Note | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2011-11-09 05:51:58 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 675786, 675792 |
Description
Vincent Danen
2011-02-07 19:01:43 UTC
Adding parent bug CVE-2010-3718 New bodhi update url: https://admin.fedoraproject.org/updates/new/?type_=security&bugs=675786,675792 Patch applied to F14 f15,f16, and master are at tomcat 6.0.32 which contains the fix. Sorry - just saw this is tomcat5 Tomcat 5 is approaching its EOL. The package is orphaned and has been slated for removal from Fedora. It is only still shipped because some packages have not yet updated their dependencies to Tomcat 6. We cannot continue to provide security fixes for this package. |