1. 24 Aug, 2018 4 commits
  2. 12 Apr, 2018 1 commit
    • Markus Koschany's avatar
      Import Debian changes 8.5.14-1+deb9u2 · b2b30054
      Markus Koschany authored
      tomcat8 (8.5.14-1+deb9u2) stretch-security; urgency=high
      
        * Team upload.
        * Fix CVE-2017-7674:
          The CORS Filter did not add an HTTP Vary header indicating that the
          response varies depending on Origin. This permitted client and server side
          cache poisoning in some circumstances.
        * Fix CVE-2017-7675:
          The HTTP/2 implementation bypassed a number of security checks that
          prevented directory traversal attacks. It was therefore possible to bypass
          security constraints using a specially crafted URL.
      b2b30054
  3. 21 Jun, 2017 1 commit
  4. 07 May, 2017 1 commit
  5. 20 Apr, 2017 5 commits
  6. 18 Apr, 2017 3 commits
  7. 12 Apr, 2017 5 commits
  8. 10 Mar, 2017 1 commit
  9. 17 Jan, 2017 1 commit
  10. 11 Jan, 2017 3 commits
  11. 06 Jan, 2017 3 commits
  12. 20 Dec, 2016 1 commit
  13. 19 Dec, 2016 1 commit
  14. 18 Dec, 2016 1 commit
  15. 08 Dec, 2016 1 commit
  16. 07 Dec, 2016 2 commits
  17. 05 Dec, 2016 3 commits
  18. 01 Dec, 2016 3 commits