Resolves: rhbz#1459160 CVE-2017-5664 tomcat: Security constrained bypass in error page mechanism

2017-06-09 15:39:00 -04:00 · 2017-06-09 15:39:00 -04:00 · 85038a7beb
commit 85038a7beb
parent ed0c45ddd8
2 changed files with 5 additions and 2 deletions
--- a/2
+++ b/2
@ -1 +1 @@
-SHA512 (apache-tomcat-8.0.43-src.tar.gz) = aa15046ba3404c206b7983f42837d30debca69b18b85345d1376a853ad6e9fb5c0cbf42732f835779b10d39e2eae77f6d1688dadc5280b50236bf3432e251e9b
+b9eccb2c956aabd2c319e91ce308971b  apache-tomcat-8.0.44-src.tar.gz
--- a/tomcat.spec
+++ b/tomcat.spec
@ -31,7 +31,7 @@
 %global jspspec 2.3
 %global major_version 8
 %global minor_version 0
-%global micro_version 43
+%global micro_version 44
 %global packdname apache-tomcat-%{version}-src
 %global servletspec 3.1
 %global elspec 3.0
@ -685,6 +685,9 @@ fi
 %attr(0660,tomcat,tomcat) %verify(not size md5 mtime) %{logdir}/catalina.out

 %changelog
+* Fri Jun 09 2017 Coty Sutherland <csutherl@redhat.com> - 1:8.0.44-1
+- Resolves: rhbz#1459160 CVE-2017-5664 tomcat: Security constrained bypass in error page mechanism
+
 * Tue Apr 11 2017 Coty Sutherland <csutherl@redhat.com> - 1:8.0.43-1
 - Update to 8.0.43