Package: tomcat6 / 6.0.35-1+squeeze4

Metadata

Package Version Patches format
tomcat6 6.0.35-1+squeeze4 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
0001 set UTF 8 as default character encoding.patch | (download)

conf/server.xml | 1 1 + 0 - 0 !
1 file changed, 1 insertion(+)

 
 [patch] set utf-8 as default character encoding
0002 do not load AJP13 connector by default.patch | (download)

conf/server.xml | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 
 [patch] do not load ajp13 connector by default
0003 disable APR library loading.patch | (download)

conf/server.xml | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 
 [patch] disable apr library loading

    ... until we properly provide it.
0004 split deploy webapps target from deploy target.patch | (download)

build.xml | 13 8 + 5 - 0 !
1 file changed, 8 insertions(+), 5 deletions(-)

 
 [patch] split deploy-webapps target from deploy target
0005 change default DBCP factory class.patch | (download)

java/org/apache/naming/factory/Constants.java | 2 1 + 1 - 0 !
webapps/docs/jndi-resources-howto.xml | 4 2 + 2 - 0 !
2 files changed, 3 insertions(+), 3 deletions(-)

 
 [patch] change default dbcp factory class

... to org.apache.commons.dbcp.BasicDataSourceFactory
0006 add JARs below var to class loader.patch | (download)

conf/catalina.properties | 6 3 + 3 - 0 !
1 file changed, 3 insertions(+), 3 deletions(-)

 
 [patch] add jars below /var to class loader
0007 add OSGi headers to servlet api.patch | (download)

res/META-INF/servlet-api.jar.manifest | 9 9 + 0 - 0 !
1 file changed, 9 insertions(+)

 
 [patch] add osgi headers to servlet-api
0008 add OSGI headers to jsp api.patch | (download)

res/META-INF/jsp-api.jar.manifest | 12 12 + 0 - 0 !
1 file changed, 12 insertions(+)

 
 [patch] add osgi headers to jsp-api
0010 Use java.security.policy file in catalina.sh.patch | (download)

bin/catalina.sh | 6 3 + 3 - 0 !
1 file changed, 3 insertions(+), 3 deletions(-)

 
 [patch] use java.security.policy file in catalina.sh

Make sure catalina.sh uses the Debian/Ubuntu java.security.policy
file location when Tomcat is started with a security manager.

Bug-Ubuntu: https://bugs.launchpad.net/bugs/591802
Bug-Debian: http://bugs.debian.org/585379
0011 CVE 2012 2733.patch | (download)

java/org/apache/coyote/http11/InternalNioInputBuffer.java | 12 6 + 6 - 0 !
1 file changed, 6 insertions(+), 6 deletions(-)

 
---
0012 CVE 2012 3544.patch | (download)

java/org/apache/coyote/http11/filters/ChunkedInputFilter.java | 76 42 + 34 - 0 !
1 file changed, 42 insertions(+), 34 deletions(-)

 
---
0013 CVE 2012 3546.patch | (download)

java/org/apache/catalina/realm/RealmBase.java | 26 0 + 26 - 0 !
1 file changed, 26 deletions(-)

 
---
0014 CVE 2012 4431.patch | (download)

java/org/apache/catalina/filters/CsrfPreventionFilter.java | 19 13 + 6 - 0 !
1 file changed, 13 insertions(+), 6 deletions(-)

 
---
0015 CVE 2012 4534.patch | (download)

java/org/apache/tomcat/util/net/NioEndpoint.java | 34 21 + 13 - 0 !
1 file changed, 21 insertions(+), 13 deletions(-)

 
---
0016 CVE 2012 5885_CVE 2012 5886_CVE 2012 5887 1.patch | (download)

java/org/apache/catalina/authenticator/DigestAuthenticator.java | 169 109 + 60 - 0 !
1 file changed, 109 insertions(+), 60 deletions(-)

 
---
0016 CVE 2012 5885_CVE 2012 5886_CVE 2012 5887 2.patch | (download)

webapps/docs/config/valve.xml | 40 40 + 0 - 0 !
1 file changed, 40 insertions(+)

 
---
0017 CVE 2013 2067.patch | (download)

java/org/apache/catalina/authenticator/FormAuthenticator.java | 10 10 + 0 - 0 !
1 file changed, 10 insertions(+)

 
---