This update includes a rebase from 7.0.99 up to 7.0.100 which resolves one CVE along with various other bugs/features:
WARNING - This update does not enforce the change in defaults for the AJP Connector like the upstream fix does. This is done to prevent breakage of current installations, but it is highly advised to review your AJP Connector configuration to ensure that it is only accessible by your proxy! For more information see the Tomcat Security Page and the Tomcat Security Considerations Document.
Please login to add feedback.
This update has been submitted for testing by csutherl.
This update's test gating status has been changed to 'ignored'.
This update has been pushed to testing.
csutherl edited this update.
New build(s):
Removed build(s):
Karma has been reset.
This update has been submitted for testing by csutherl.
csutherl edited this update.
csutherl edited this update.
This update has been pushed to testing.
This update can be pushed to stable now if the maintainer wishes
This update has been submitted for stable by bodhi.
This update has been pushed to stable.