Univention Bugzilla – Bug 37004
tomcat6: Multiple issues (4.0)
Last modified: 2017-10-26 13:54:46 CEST
Information disclosure / XEE (CVE-2013-4590) Information disclosure (CVE-2013-4286) Denial of service in handling chunked extensions (CVE-2013-4322) Session fixation (CVE-2014-0033) Denial of service in chunked header parsing (CVE-2014-0075) Information disclosure in XSLT/XML parsers (CVE-2014-0096, CVE-2014-0119) Information disclosure when parsing content length headers (CVE-2014-0099)
It was possible to craft a malformed chunk as part of a chunked request that caused Tomcat to read part of the request body as a new request (CVE-2014-0227)
Non-persistent DoS attack by feeding data by aborting an upload (CVE-2014-0230)
security manager bypass via expression language (EL) expressions (CVE-2014-7810)
Upstream Debian package version 6.0.45+dfsg-1~deb7u1 fixes all of the issues above.
Move to 4.0-5-errata.
repo_admin.py --cherrypick -r 3.3 --releasedest 4.0 --dest errata4.0-5 -p tomcat6 find -type f | grep -F -f <(cd source && dcmd tomcat6_6.0.45+dfsg-1.52.201604191550_i386.changes) | cpio -p --link ../ucs_4.0-0-errata4.0-5/ repo-apt-ftparchive --release ucs_4.0-0-errata4.0-5 FYI: tomcat6 is unmaintained in UCS-4.0: http://univention-repository.knut.univention.de/4.0/maintained/ 4.0-0/all/ Packages QA: univention-install tomcat6 elinks http://localhost:8080/ $EDITOR /etc/apt/sources.list apt-get -qq update apt-get upgrade apt-get install tomcat6-examples elinks http://localhost:8080/examples/ dpkg-query -W tomcat6 # 6.0.45+dfsg-1.52.201604191550 r69552 | Bug #35058,Bug #37004: tomcat6 YAML tomcat6.xml
Tests (amd64/i386): OK Advisory: OK
<http://errata.software-univention.de/ucs/4.0/427.html>