tomcat7 (7.0.52-1ubuntu0.14) trusty-security; urgency=medium
* SECURITY UPDATE: missing checks when HTTP PUTs enabled (LP: #1721749)
- debian/patches/CVE-2017-1261x.patch: add checks to
java/org/apache/catalina/servlets/DefaultServlet.java
java/org/apache/naming/resources/FileDir
This bug was fixed in the package tomcat8 - 8.0.32-1ubuntu1.6
---
tomcat8 (8.0.32-1ubuntu1.6) xenial-security; urgency=medium
* SECURITY UPDATE: missing checks when HTTP PUTs enabled (LP: #1721749)
- debian/patches/CVE-2017-12617.patch: add checks to
java/org/apache/catali
This bug was fixed in the package tomcat8 - 8.5.21-1ubuntu1.1
---
tomcat8 (8.5.21-1ubuntu1.1) artful-security; urgency=medium
* SECURITY UPDATE: missing checks when HTTP PUTs enabled (LP: #1721749)
- debian/patches/CVE-2017-12617.patch: add checks to
java/org/apache/catali
fixed with 8.5.29-1 in bionic
** Also affects: tomcat8 (Ubuntu Artful)
Importance: Undecided
Status: New
** Also affects: tomcat8 (Ubuntu Trusty)
Importance: Undecided
Status: New
** Also affects: tomcat8 (Ubuntu Bionic)
Importance: Undecided
Status: Triaged
** Als
** Changed in: tomcat8 (Ubuntu)
Status: New => Triaged
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1721749
Title:
Secur
