-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Thu, 03 Jan 2008 11:10:07 +0100 Source: tomcat5.5 Binary: libtomcat5.5-java tomcat5.5 tomcat5.5-admin tomcat5.5-webapps Architecture: source all Version: 5.5.20-2etch1 Distribution: stable-security Urgency: high Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org> Changed-By: Michael Koch <konqueror@gmx.de> Description: libtomcat5.5-java - Java Servlet engine -- core libraries tomcat5.5 - Java Servlet 2.4 engine with JSP 2.0 support tomcat5.5-admin - Java Servlet engine -- admin & manager web interfaces tomcat5.5-webapps - Java Servlet engine -- documentation and example web applications Closes: 448664 458237 Changes: tomcat5.5 (5.5.20-2etch1) stable-security; urgency=high . * CVE-2007-3382: Fix handling of handling '"' in cookies. * CVE-2007-3385: Fix handling of \'' sequence in cookies. * CVE-2007-3386: Fix HTML injection problem. * CVE-2007-5342: Fix unauthorized modification of data because of too open permissions. Closes: #458237. * CVE-2007-5461: Fix absolute path traversal vulnerability. Closes: #448664. Files: c2193e917dd759a50b8481177bfcef39 1277 web optional tomcat5.5_5.5.20-2etch1.dsc 5775bae8fac16a0e3a2c913c4768bb37 4796377 web optional tomcat5.5_5.5.20.orig.tar.gz 6df1691cbea55b10e2d2d865b4b2983a 28422 web optional tomcat5.5_5.5.20-2etch1.diff.gz a1de64bb115d03c4d33c28065e0c793a 56744 web optional tomcat5.5_5.5.20-2etch1_all.deb 5f6482d73f7507b5f2f050ea825ee800 2385530 web optional libtomcat5.5-java_5.5.20-2etch1_all.deb 4bc554684655794b1d82db2160d67bea 1472296 web optional tomcat5.5-webapps_5.5.20-2etch1_all.deb ab90aab000037913260361eec812c573 1162332 web optional tomcat5.5-admin_5.5.20-2etch1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHfUuoXm3vHE4uyloRAifyAJ9LmLiFgKSgfYPNpWK9kcmn5jz/+ACcDTU9 /yvLXWxYVns8KlNH/9P+X4s= =pfNb -----END PGP SIGNATURE----- Accepted: libtomcat5.5-java_5.5.20-2etch1_all.deb to pool/main/t/tomcat5.5/libtomcat5.5-java_5.5.20-2etch1_all.deb tomcat5.5-admin_5.5.20-2etch1_all.deb to pool/main/t/tomcat5.5/tomcat5.5-admin_5.5.20-2etch1_all.deb tomcat5.5-webapps_5.5.20-2etch1_all.deb to pool/main/t/tomcat5.5/tomcat5.5-webapps_5.5.20-2etch1_all.deb tomcat5.5_5.5.20-2etch1.diff.gz to pool/main/t/tomcat5.5/tomcat5.5_5.5.20-2etch1.diff.gz tomcat5.5_5.5.20-2etch1.dsc to pool/main/t/tomcat5.5/tomcat5.5_5.5.20-2etch1.dsc tomcat5.5_5.5.20-2etch1_all.deb to pool/main/t/tomcat5.5/tomcat5.5_5.5.20-2etch1_all.deb
