| Name: | pki-servlet-4.0-api |
|---|---|
| Epoch: | 1 |
| Version: | 9.0.7 |
| Release: | 16.module+el8.2.0+5508+146760da |
| Architecture: | noarch |
| Module: | pki-deps:10.6:8020020191204213056:9edba152 |
| Group: | Development/Libraries |
| Size: | 337382 |
| License: | ASL 2.0 |
| RPM: | pki-servlet-4.0-api-9.0.7-16.module+el8.2.0+5508+146760da.noarch.rpm |
| Source RPM: | pki-servlet-engine-9.0.7-16.module+el8.2.0+5508+146760da.src.rpm |
| Build Date: | Sat Feb 15 2020 |
| Build Host: | jenkins-10-147-72-125-c5b73e7c-96b8-4432-82d0-e7725c1cde3d.appad1iad.osdevelopmeniad.oraclevcn.com |
| Vendor: | Oracle America |
| URL: | http://tomcat.apache.org/ |
| Summary: | Apache Tomcat Java Servlet v4.0 API Implementation Classes |
| Description: | Apache Tomcat Servlet API Implementation Classes. |
- Obsoleted pki-servlet-container
- Rename pki-servlet-container into pki-servlet-engine
- Update to JWS 5.0.2 distribution - Resolves: rhbz#1658846 CVE-2018-8034 pki-servlet-container: tomcat: host name verification missing in WebSocket client - Resolves: rhbz#1579614 CVE-2018-8014 pki-servlet-container: tomcat: Insecure defaults in CORS filter enable 'supportsCredentials' for all origins - Resolves: rhbz#1619232 - CVE-2018-8037 pki-servlet-container: tomcat: Due to a mishandling of close in NIO/NIO2 connectors user sessions can get mixed up - Resolves: rhbz#1641874 - CVE-2018-11784 pki-servlet-container: tomcat: Open redirect in default servlet
- Reinstate Maven artifacts and fix maven-metadata JAR path
- Add missing BuildRequires: systemd-units
- Resolves: rhbz#1594139 Cleanup Provides and Requires
- Create packages for FreeIPA that wrap the JWS distribution of Tomcat