Red Hat Bugzilla – Bug 429834
CVE-2008-0128 tomcat5 SSO cookie login information disclosure [rhn_satellite_4.2]
Last modified: 2008-06-30 14:28:32 EDT
rhn_satellite_4.2 tracking bug: see blocks bug list for full details of the security issue(s).
This bug is never intended to be made public, please put any public notes in the 'blocks' bugs.
For the security issues handling process overview see: http://intranet.corp.redhat.com/ic/intranet/SecurityZStreamFAQ
[bug automatically created by: add-tracking-bugs]
Promoted tomcat5-5.0.30-0jpp_10rh.noarch.rpm from support-satellite-5.0-4AS-java
collection, where we fixed it.
QA push for 4.2.3 complete: satellite-4.2.3-1 and proxy-4.2.3-1 are
now on webqa. Note that there is _no_ ISO planned for the 4.2.3
Developers, please move your bugs ON_QA.
tomcat5-5.0.30-0jpp_10rh.noarch.rpm on both rhel3 & rhel4 satellites.
Verified on Stage 423 RHEL3/4 satellites. tomcat5-5.0.30-0jpp_10rh package is
available on both. Moving to RELEASE_PENDING.
4.2.3 Satellite is now GA, bugs Closed for Current Release.