security-6.xml

markt Fri, 08 Feb 2008 12:07:36 -0800

Author: markt
Date: Fri Feb  8 12:06:56 2008
New Revision: 619987

URL: http://svn.apache.org/viewvc?rev=619987&view=rev
Log:
Update after recent releases


Modified:
    tomcat/site/trunk/docs/security-5.html
    tomcat/site/trunk/docs/security-6.html
    tomcat/site/trunk/xdocs/security-5.xml
    tomcat/site/trunk/xdocs/security-6.xml

Modified: tomcat/site/trunk/docs/security-5.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/security-5.html?rev=619987&r1=619986&r2=619987&view=diff
==============================================================================
--- tomcat/site/trunk/docs/security-5.html (original)
+++ tomcat/site/trunk/docs/security-5.html Fri Feb  8 12:06:56 2008
@@ -204,7 +204,9 @@
 
     <p>Please note that Tomcat 5.0.x is no longer supported. Further
        vulnerabilities in the 5.0.x branch will not be fixed. Users should
-       upgrade to 5.5.x or 6.x to obtain security fixes.</p>
+       upgrade to 5.5.x or 6.x to obtain security fixes. Vulnerabilities fixed
+       in Tomcat 5.5.26 onwards have not been assessed to determine if they are
+       present in the 5.0.x branch.</p>
 
   </blockquote>
 </p>
@@ -220,8 +222,8 @@
 <tr>
 <td bgcolor="#525D76">
 <font color="#ffffff" face="arial,helvetica,sanserif">
-<a name="Fixed in SVN trunk and proposed for inclusion in 5.5.x">
-<strong>Fixed in SVN trunk and proposed for inclusion in 5.5.x</strong>
+<a name="Fixed in Apache Tomcat 5.5.26">
+<strong>Fixed in Apache Tomcat 5.5.26</strong>
 </a>
 </font>
 </td>
@@ -244,30 +246,6 @@
 
     <p>Affects: 5.5.9-5.5.25</p>
 
-  </blockquote>
-</p>
-</td>
-</tr>
-<tr>
-<td>
-<br/>
-</td>
-</tr>
-</table>
-<table border="0" cellspacing="0" cellpadding="2" width="100%">
-<tr>
-<td bgcolor="#525D76">
-<font color="#ffffff" face="arial,helvetica,sanserif">
-<a name="Fixed in Apache Tomcat 5.5.SVN for inclusion in next release">
-<strong>Fixed in Apache Tomcat 5.5.SVN for inclusion in next release</strong>
-</a>
-</font>
-</td>
-</tr>
-<tr>
-<td>
-<p>
-<blockquote>
     <p>
 <strong>important: Information disclosure</strong>
        <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5461";>
@@ -279,8 +257,7 @@
        with a SYSTEM tag can result in the contents of arbitary files being
        returned to the client.</p>
 
-    <p>Affects: 5.0.0-5.0.SVN, 5.5.0-5.5.25</p>
-
+    <p>Affects: 5.5.0-5.5.25</p>
   </blockquote>
 </p>
 </td>

Modified: tomcat/site/trunk/docs/security-6.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/security-6.html?rev=619987&r1=619986&r2=619987&view=diff
==============================================================================
--- tomcat/site/trunk/docs/security-6.html (original)
+++ tomcat/site/trunk/docs/security-6.html Fri Feb  8 12:06:56 2008
@@ -216,8 +216,8 @@
 <tr>
 <td bgcolor="#525D76">
 <font color="#ffffff" face="arial,helvetica,sanserif">
-<a name="Fixed in SVN trunk and proposed for inclusion in 6.0.x">
-<strong>Fixed in SVN trunk and proposed for inclusion in 6.0.x</strong>
+<a name="Fixed in Apache Tomcat 6.0.16">
+<strong>Fixed in Apache Tomcat 6.0.16</strong>
 </a>
 </font>
 </td>
@@ -240,30 +240,6 @@
 
     <p>Affects: 6.0.0-6.0.15</p>
 
-  </blockquote>
-</p>
-</td>
-</tr>
-<tr>
-<td>
-<br/>
-</td>
-</tr>
-</table>
-<table border="0" cellspacing="0" cellpadding="2" width="100%">
-<tr>
-<td bgcolor="#525D76">
-<font color="#ffffff" face="arial,helvetica,sanserif">
-<a name="Fixed in Apache Tomcat 6.0.SVN for inclusion in next release">
-<strong>Fixed in Apache Tomcat 6.0.SVN for inclusion in next release</strong>
-</a>
-</font>
-</td>
-</tr>
-<tr>
-<td>
-<p>
-<blockquote>
     <p>
 <strong>important: Information disclosure</strong>
        <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5461";>
@@ -276,7 +252,6 @@
        returned to the client.</p>
 
     <p>Affects: 6.0.0-6.0.14</p>
-
   </blockquote>
 </p>
 </td>

Modified: tomcat/site/trunk/xdocs/security-5.xml
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/security-5.xml?rev=619987&r1=619986&r2=619987&view=diff
==============================================================================
--- tomcat/site/trunk/xdocs/security-5.xml (original)
+++ tomcat/site/trunk/xdocs/security-5.xml Fri Feb  8 12:06:56 2008
@@ -22,11 +22,13 @@
 
     <p>Please note that Tomcat 5.0.x is no longer supported. Further
        vulnerabilities in the 5.0.x branch will not be fixed. Users should
-       upgrade to 5.5.x or 6.x to obtain security fixes.</p>
+       upgrade to 5.5.x or 6.x to obtain security fixes. Vulnerabilities fixed
+       in Tomcat 5.5.26 onwards have not been assessed to determine if they are
+       present in the 5.0.x branch.</p>
 
   </section>
 
-  <section name="Fixed in SVN trunk and proposed for inclusion in 5.5.x">
+  <section name="Fixed in Apache Tomcat 5.5.26">
     <p><strong>low: Elevated privileges</strong>
        <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5342";>
        CVE-2007-5342</a></p>
@@ -39,9 +41,6 @@
 
     <p>Affects: 5.5.9-5.5.25</p>
 
-  </section>
-
-  <section name="Fixed in Apache Tomcat 5.5.SVN for inclusion in next release">
     <p><strong>important: Information disclosure</strong>
        <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5461";>
        CVE-2007-5461</a></p>
@@ -51,8 +50,7 @@
        with a SYSTEM tag can result in the contents of arbitary files being
        returned to the client.</p>
 
-    <p>Affects: 5.0.0-5.0.SVN, 5.5.0-5.5.25</p>
-
+    <p>Affects: 5.5.0-5.5.25</p>
   </section>
 
   <section name="Fixed in Apache Tomcat 5.5.25, 5.0.SVN">

Modified: tomcat/site/trunk/xdocs/security-6.xml
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/security-6.xml?rev=619987&r1=619986&r2=619987&view=diff
==============================================================================
--- tomcat/site/trunk/xdocs/security-6.xml (original)
+++ tomcat/site/trunk/xdocs/security-6.xml Fri Feb  8 12:06:56 2008
@@ -22,7 +22,7 @@
 
   </section>
 
-  <section name="Fixed in SVN trunk and proposed for inclusion in 6.0.x">
+  <section name="Fixed in Apache Tomcat 6.0.16">
     <p><strong>low: Elevated privileges</strong>
        <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5342";>
        CVE-2007-5342</a></p>
@@ -35,9 +35,6 @@
 
     <p>Affects: 6.0.0-6.0.15</p>
 
-  </section>
-
-  <section name="Fixed in Apache Tomcat 6.0.SVN for inclusion in next release">
     <p><strong>important: Information disclosure</strong>
        <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5461";>
        CVE-2007-5461</a></p>
@@ -48,7 +45,6 @@
        returned to the client.</p>
 
     <p>Affects: 6.0.0-6.0.14</p>
-
   </section>
 
   <section name="Fixed in Apache Tomcat 6.0.14">



---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

svn commit: r619987 - in /tomcat/site/trunk: docs/security-5.html docs/security-6.html xdocs/security-5.xml xdocs/security-6.xml

Reply via email to