ELSA-2014-0827

ULN >
Oracle Linux Errata repository >
ELSA-2014-0827

ELSA-2014-0827 - tomcat security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2014-07-23

Description

[0:7.0.42-6]
- Resolves: CVE-2014-0099 Fix possible overflow when parsing
- long values from byte array
- Resolves: CVE-2014-0096 Information discloser process XSLT
- files not subject to same constraint running under
- java security manager
- Resolves: CVE-2014-0075 Avoid overflow in ChunkedInputFilter.

Related CVEs

CVE-2014-0099

CVE-2014-0096

CVE-2014-0075

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	tomcat-7.0.42-6.el7_0.src.rpm	407354bc3651e30493c68eb98b50fd08e0f5a6946419f3e7c4f07758bdb47a95	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-7.0.42-6.el7_0.src.rpm	407354bc3651e30493c68eb98b50fd08e0f5a6946419f3e7c4f07758bdb47a95	ELSA-2020-5020	ol7_x86_64_optional_archive
	tomcat-7.0.42-6.el7_0.src.rpm	407354bc3651e30493c68eb98b50fd08e0f5a6946419f3e7c4f07758bdb47a95	ELSA-2020-5020	ol7_x86_64_u0_patch
	tomcat-7.0.42-6.el7_0.noarch.rpm	0a5935bdb4b5f2b3b52683e5c33f0ec0b38139736db623d0b9ffc24b0932aeb3	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-7.0.42-6.el7_0.noarch.rpm	0a5935bdb4b5f2b3b52683e5c33f0ec0b38139736db623d0b9ffc24b0932aeb3	ELSA-2020-5020	ol7_x86_64_u0_patch
	tomcat-admin-webapps-7.0.42-6.el7_0.noarch.rpm	d6f4347961c329bd081f71f3e89b47e0d666a8aa78f6e89d0907bf6a04c5e5be	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-admin-webapps-7.0.42-6.el7_0.noarch.rpm	d6f4347961c329bd081f71f3e89b47e0d666a8aa78f6e89d0907bf6a04c5e5be	ELSA-2020-5020	ol7_x86_64_u0_patch
	tomcat-docs-webapp-7.0.42-6.el7_0.noarch.rpm	068656bfb1de5b8bb098cdca7b130ed709e3fbb66f6fcd1a3d7ded5d84a0040d	ELSA-2020-5020	ol7_x86_64_optional_archive
	tomcat-el-2.2-api-7.0.42-6.el7_0.noarch.rpm	c35bd6f4d21a99dbaaa25b9a3f734fa4a93773f5d5c9e235a445ccb891f3e162	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-el-2.2-api-7.0.42-6.el7_0.noarch.rpm	c35bd6f4d21a99dbaaa25b9a3f734fa4a93773f5d5c9e235a445ccb891f3e162	ELSA-2020-5020	ol7_x86_64_u0_patch
	tomcat-javadoc-7.0.42-6.el7_0.noarch.rpm	c962db9a024ad981b2a8ff511aab82960dc46e7a4edceebcb9bb209217f8fc3d	ELSA-2020-5020	ol7_x86_64_optional_archive
	tomcat-jsp-2.2-api-7.0.42-6.el7_0.noarch.rpm	05b6f052a57af10f83ab28b3fdb94c21993eb3be28128a6003f95ed16c3301f6	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-jsp-2.2-api-7.0.42-6.el7_0.noarch.rpm	05b6f052a57af10f83ab28b3fdb94c21993eb3be28128a6003f95ed16c3301f6	ELSA-2020-5020	ol7_x86_64_u0_patch
	tomcat-jsvc-7.0.42-6.el7_0.noarch.rpm	7feb8a91184f107be450ca48802a0104d2c57b4cd0fc8e848d56beb5e41c0708	ELSA-2020-5020	ol7_x86_64_optional_archive
	tomcat-lib-7.0.42-6.el7_0.noarch.rpm	c057d0691bd039cd58f38c50740784297c6d011adf58517a5f44c376e7ab663b	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-lib-7.0.42-6.el7_0.noarch.rpm	c057d0691bd039cd58f38c50740784297c6d011adf58517a5f44c376e7ab663b	ELSA-2020-5020	ol7_x86_64_u0_patch
	tomcat-servlet-3.0-api-7.0.42-6.el7_0.noarch.rpm	0582f74842356bd2d15dd2ec8f8ef80aa085df82b383d0909fbb11e60033ad4a	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-servlet-3.0-api-7.0.42-6.el7_0.noarch.rpm	0582f74842356bd2d15dd2ec8f8ef80aa085df82b383d0909fbb11e60033ad4a	ELSA-2020-5020	ol7_x86_64_u0_patch
	tomcat-webapps-7.0.42-6.el7_0.noarch.rpm	2214bd2d284153c4544bb67a696893e8a1ac64b42affc0e7a439512def193dda	ELSA-2020-5020	ol7_x86_64_latest_archive
	tomcat-webapps-7.0.42-6.el7_0.noarch.rpm	2214bd2d284153c4544bb67a696893e8a1ac64b42affc0e7a439512def193dda	ELSA-2020-5020	ol7_x86_64_u0_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691