ELSA-2014-0827

ULN >
Oracle Linux Errata repository >
ELSA-2014-0827

ELSA-2014-0827 - tomcat security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2014-07-23

Description

[0:7.0.42-6]
- Resolves: CVE-2014-0099 Fix possible overflow when parsing
- long values from byte array
- Resolves: CVE-2014-0096 Information discloser process XSLT
- files not subject to same constraint running under
- java security manager
- Resolves: CVE-2014-0075 Avoid overflow in ChunkedInputFilter.

Related CVEs

CVE-2014-0075

CVE-2014-0096

CVE-2014-0099

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (x86_64)	tomcat-7.0.42-6.el7_0.src.rpm	83a35af68193f3d798c9299a0be340aa	ELSA-2020-5020
	tomcat-7.0.42-6.el7_0.noarch.rpm	96589d27b066fb70f444369738095feb	ELSA-2020-5020
	tomcat-admin-webapps-7.0.42-6.el7_0.noarch.rpm	048a70c0c1369d67995b80a1abc7c401	ELSA-2020-5020
	tomcat-docs-webapp-7.0.42-6.el7_0.noarch.rpm	f6cb07285a28379ff855e8c5fe61649a	ELSA-2020-5020
	tomcat-el-2.2-api-7.0.42-6.el7_0.noarch.rpm	da4f5f57624296c7f9f00b1aba6c0be9	ELSA-2020-5020
	tomcat-javadoc-7.0.42-6.el7_0.noarch.rpm	d0dc14c38e203d794acca8c7569ac890	ELSA-2020-5020
	tomcat-jsp-2.2-api-7.0.42-6.el7_0.noarch.rpm	ebd77c21707c083e6ee2c94c7160708d	ELSA-2020-5020
	tomcat-jsvc-7.0.42-6.el7_0.noarch.rpm	625c53497c093baaeb8eee4893773823	ELSA-2020-5020
	tomcat-lib-7.0.42-6.el7_0.noarch.rpm	5be9c90f7737ae4660b38fec86f4070f	ELSA-2020-5020
	tomcat-servlet-3.0-api-7.0.42-6.el7_0.noarch.rpm	45fa0820f938bae6472b54eebb267e6e	ELSA-2020-5020
	tomcat-webapps-7.0.42-6.el7_0.noarch.rpm	16222e11167a04cab71844778d5404c4	ELSA-2020-5020

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691