Пакет tomcat-1:9.0.87-6.el9_7.1.src
| Имя | tomcat |
|---|---|
| Эпоха | 1 |
| Версия | 9.0.87 |
| Релиз | 6.el9_7.1 |
| Архитектура | src |
| Сайт | http://tomcat.apache.org/ |
| Лицензия | ASL 2.0 |
| Время сборки | 2025-12-11 09:04:43 |
| Хост сборки | builder-arm64-1.inferitos.ru |
| Краткое описание | Apache Servlet/JSP Engine, RI for Servlet 4.0/JSP 2.3 API |
| Репозитории | AppStream |
| Полное описание | Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Java Servlet and JavaServer Pages specifications are developed by Sun under the Java Community Process. Tomcat is developed in an open and participatory environment and released under the Apache Software License version 2.0. Tomcat is intended to be a collaboration of the best-of-breed developers from around the world. |
| Эррата | — |
| Размер | 15502 КиБ |
| Исходный проект | tomcat-9.0.87-6.el9_7.1 |
| Контрольная сумма SHA-256 | 48f5f28613270637073ea87dcbadc4eab44bf6c4cb160f3853101a2fba55f0b5 |
×
![Full screenshot]()
* Thu Nov 27 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-6.el9_7.1 - Resolves: RHEL-124518 tomcat: Directory traversal via rewrite with possible RCE (CVE-2025-55752) - Resolves: RHEL-91753 tomcat: Bypass of rules in Rewrite Valve (CVE-2025-31651) * Thu Aug 14 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-6 - Resolves: RHEL-102201 tomcat: http/2 "MadeYouReset" DoS attack through HTTP/2 control frames (CVE-2025-48989) * Tue Aug 12 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-5 - Resolves: RHEL-108489 tomcat: Apache Commons FileUpload DOS via part headers (CVE-2025-48976) - Resolves: RHEL-108497 tomcat: Dos in multipart upload (CVE-2025-48988) - Resolves: RHEL-108505 tomcat: Security constraint bypass for pre/post-resources (CVE-2025-49125) - Resolves: RHEL-108513 tomcat: Denial of service (CVE-2025-52434) - Resolves: RHEL-108529 tomcat: Denial of service (CVE-2025-52520) - Resolves: RHEL-108523 tomcat: Denial of service (CVE-2025-53506) * Mon Jul 21 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-4 - Resolves: RHEL-91763 tomcat: DoS via malformed HTTP/2 PRIORITY_UPDATE frame (CVE-2025-31650) - Resolves: RHEL-71985 tomcat: Incomplete fix for CVE-2024-50379 - RCE due to TOCTOU issue in JSP compilation (CVE-2024-56337) * Tue Apr 08 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-3 - Resolves: RHEL-82945 tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT (CVE-2025-24813) - Resolves: RHEL-71723 tomcat: RCE due to TOCTOU issue in JSP compilation (CVE-2024-50379) * Thu Aug 08 2024 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-2 - Resolves: RHEL-46163 tomcat: Improper Handling of Exceptional Conditions (CVE-2024-34750) - Resolves: RHEL-18245 - OpenJDK 21 support for RHEL Tomcat * Fri May 03 2024 Sokratis Zappis <szappis@redhat.com> - 1:9.0.87-1 - Resolves: RHEL-35812 - Rebase tomcat to version 9.0.87 - Resolves: RHEL-29257 tomcat: Apache Tomcat: WebSocket DoS with incomplete closing handshake (CVE-2024-23672) - Resolves: RHEL-29252 tomcat: : Apache Tomcat: HTTP/2 header handling DoS (CVE-2024-24549) - Resolves: RHEL-53001 - Amend tomcat's changelog (CVE-2023-46589, CVE-2023-45648, CVE-2023-42795, CVE-2023-42794, CVE-2023-44487, CVE-2023-41080) * Thu Jan 18 2024 Hui Wang <huwang@redhat.com> - 1:9.0.62-39 - Resolves: RHEL-17605 tomcat: HTTP request smuggling via malformed trailer headers (CVE-2023-46589)