cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
c539ea8fde
openbsd-ports/www/jakarta-tomcat/v4/pkg
History
reinhard d31aa12fa4 SECURITY update to v4.0.6 
A security vulnerability has been confirmed to exist in Apache Tomcat
4.0.x releases (including Tomcat 4.0.5), which allows to use a specially
crafted URL to return the unprocessed source of a JSP page, or, under
special circumstances, a static resource which would otherwise have been
protected by security constraint, without the need for being properly
authenticated. This is based on a variant of the exploit that was
disclosed on 09/24/2002.
2002-10-11 14:36:21 +00:00
..
DEINSTALL jakarta-tomcat v4 2002-01-05 15:29:25 +00:00
DESCR jakarta-tomcat v4 2002-01-05 15:29:25 +00:00
INSTALL $CATALINA_BASE; sam@sewm.org 2002-01-07 12:13:52 +00:00
MESSAGE use jdk-1.3; thx ian@, nino@ 2002-03-29 11:10:54 +00:00
PLIST SECURITY update to v4.0.6 2002-10-11 14:36:21 +00:00