Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
Name: tomcat-servlet-4.0-api | Distribution: CentOS |
Version: 9.0.87 | Vendor: CentOS |
Release: 5.el9 | Build date: Fri Aug 22 12:49:42 2025 |
Group: Unspecified | Build host: aarch64-06.stream.rdu2.redhat.com |
Size: 624402 | Source RPM: tomcat-9.0.87-5.el9.src.rpm |
Packager: builder@centos.org | |
Url: http://tomcat.apache.org/ | |
Summary: Apache Tomcat Java Servlet v4.0 API Implementation Classes |
Apache Tomcat Servlet API Implementation Classes.
ASL 2.0
* Tue Aug 12 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-5 - Resolves: RHEL-108489 tomcat: Apache Commons FileUpload DOS via part headers (CVE-2025-48976) - Resolves: RHEL-108497 tomcat: Dos in multipart upload (CVE-2025-48988) - Resolves: RHEL-108505 tomcat: Security constraint bypass for pre/post-resources (CVE-2025-49125) - Resolves: RHEL-108513 tomcat: Denial of service (CVE-2025-52434) - Resolves: RHEL-108529 tomcat: Denial of service (CVE-2025-52520) - Resolves: RHEL-108523 tomcat: Denial of service (CVE-2025-53506) * Mon Jul 21 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-4 - Resolves: RHEL-91763 tomcat: DoS via malformed HTTP/2 PRIORITY_UPDATE frame (CVE-2025-31650) - Resolves: RHEL-71985 tomcat: Incomplete fix for CVE-2024-50379 - RCE due to TOCTOU issue in JSP compilation (CVE-2024-56337) * Tue Apr 08 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-3 - Resolves: RHEL-82945 tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT (CVE-2025-24813) - Resolves: RHEL-71723 tomcat: RCE due to TOCTOU issue in JSP compilation (CVE-2024-50379) * Thu Aug 08 2024 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-2 - Resolves: RHEL-46163 tomcat: Improper Handling of Exceptional Conditions (CVE-2024-34750) - Resolves: RHEL-18245 - OpenJDK 21 support for RHEL Tomcat * Fri May 03 2024 Sokratis Zappis <szappis@redhat.com> - 1:9.0.87-1 - Resolves: RHEL-35812 - Rebase tomcat to version 9.0.87 - Resolves: RHEL-29257 tomcat: Apache Tomcat: WebSocket DoS with incomplete closing handshake (CVE-2024-23672) - Resolves: RHEL-29252 tomcat: : Apache Tomcat: HTTP/2 header handling DoS (CVE-2024-24549) - Resolves: RHEL-53001 - Amend tomcat's changelog (CVE-2023-46589, CVE-2023-45648, CVE-2023-42795, CVE-2023-42794, CVE-2023-44487, CVE-2023-41080) * Thu Jan 18 2024 Hui Wang <huwang@redhat.com> - 1:9.0.62-39 - Resolves: RHEL-17605 tomcat: HTTP request smuggling via malformed trailer headers (CVE-2023-46589) * Thu Nov 23 2023 Hui Wang <huwang@redhat.com> - 1:9.0.62-38 - Resolves: RHEL-13908 tomcat: incorrectly parsed http trailer headers can cause request smuggling (CVE-2023-45648) - Resolves: RHEL-13905 tomcat: improper cleaning of recycled objects could lead to information leak (CVE-2023-42795) - Resolves: RHEL-12952 tomcat: FileUpload: DoS due to accumulation of temporary files on Windows (CVE-2023-42794) - Resolves: RHEL-12552 tomcat: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487) - Resolves: RHEL-2388 tomcat: Open Redirect vulnerability in FORM authentication (CVE-2023-41080) * Fri Oct 13 2023 Hui Wang <huwang@redhat.com> - 1:9.0.62-37 - Resolves: RHEL-12551 tomcat: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487) - Remove JDK subpackges which are unused * Fri Aug 25 2023 Coty Sutherland <csutherl@redhat.com> - 1:9.0.62-16 - Related: #2184133 Declare file conflicts * Fri Aug 25 2023 Coty Sutherland <csutherl@redhat.com> - 1:9.0.62-15 - Resolves: #2184133 Fix bug in Obsoletes
/usr/share/doc/tomcat-servlet-4.0-api /usr/share/doc/tomcat-servlet-4.0-api/LICENSE /usr/share/java/tomcat /usr/share/java/tomcat-servlet-4.0-api.jar /usr/share/java/tomcat-servlet-api.jar /usr/share/java/tomcat/tomcat-servlet-4.0-api.jar /usr/share/java/tomcat/tomcat-servlet-api.jar /usr/share/maven-metadata/tomcat-tomcat-servlet-api.xml /usr/share/maven-poms/tomcat /usr/share/maven-poms/tomcat/tomcat-servlet-api.pom
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Oct 21 04:59:16 2025