-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sun, 01 Feb 2026 15:37:07 +0100
Source: tomcat9
Architecture: source
Version: 9.0.115-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Changes:
tomcat9 (9.0.115-1) unstable; urgency=medium
.
* Team upload
* New upstream version
* Fix SSL socket factory configuration in the JNDI realm.
* Fix a memory leak when using a trust store with the OpenSSL provider.
* Add strictSni attribute on the Connector to allow matching the
SSLHostConfig configuration associated with the SNI host name
to the SSLHostConfig configuration matched from the HTTP protocol
host name.
Non matching configurations will cause the request to be
rejected. The attribute default value is true,
enabling the matching.
* Correct a regression introduced in 9.0.109 that broke
some clustering configurations.
* Update Commons Daemon to 1.5.0.
* For configuration consistency between OpenSSL and JSSE TLS
implementations, TLSv1.3 cipher suites included in the
ciphers attribute of an SSLHostConfig are now always
ignored (previously they would be ignored with OpenSSL
implementations and used with JSSE implementations) and
a warning is logged that the cipher suite has been ignored.
* Expand OCSP support to JSSE based connections and
expand OCSP configuration options.
* Update Commons Daemon to 1.5.1.
* Update Tomcat Native to 2.0.12 and increase the
minimum version to 2.0.12 / 1.3.4.
Checksums-Sha1:
4664d4c083ce8142a39eb343df441ac2b9ee1d73 2364 tomcat9_9.0.115-1.dsc
abd8dfc066c3522fc0ab645b6c41e3113ab9127d 5094524 tomcat9_9.0.115.orig.tar.xz
fe7a6503e236a6433ffad24d6604d31dc6fc61ab 31288 tomcat9_9.0.115-1.debian.tar.xz
bec914947e789724649b6c8c073be8e2d5083f60 5677 tomcat9_9.0.115-1_source.buildinfo
Checksums-Sha256:
abe28638f8f43f5640edd0b2ace740f3c91651ef51a300953df9be9e8850ebbc 2364 tomcat9_9.0.115-1.dsc
817767756d0a2a31528b49c26bc24a9714f4db35fa8e49df16fd01576eeb503e 5094524 tomcat9_9.0.115.orig.tar.xz
e4755e1830e26dee177b113888c4e0f23d6cb043125ae1cf4ca60a9f0e335ab6 31288 tomcat9_9.0.115-1.debian.tar.xz
3bc97e12cfee39ed0aac0ee2098ed996a312fbd336381f59522361dd7f8c9673 5677 tomcat9_9.0.115-1_source.buildinfo
Files:
c4648c5d31c50169327cf496d4fa7353 2364 java optional tomcat9_9.0.115-1.dsc
39f4cac7175f34e35795c816cd8f60e0 5094524 java optional tomcat9_9.0.115.orig.tar.xz
4c63a58ddb05e050fa69d2e16a8f354e 31288 java optional tomcat9_9.0.115-1.debian.tar.xz
924359e03b6fdf182b2e44be45183ce2 5677 java optional tomcat9_9.0.115-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=E3nA
-----END PGP SIGNATURE-----
