[Secure-testing-team] Bug#695250: tomcat6: CVE-2012-4534 CVE-2012-4431 CVE-2012-3546
Moritz Muehlenhoff
jmm at inutil.org
Thu Dec 6 07:43:30 UTC 2012
Package: tomcat6
Severity: grave
Tags: security
Justification: user security hole
More Tomcat security issues have been disclosed:
http://tomcat.apache.org/security-6.html
The page contains links to the upstream fixes.
BTW, is there a specific reason why both tomcat6 and tomcat7 are present in Wheezy?
This will duplicate all efforts for security updates in Wheezy.
Cheers,
Moritz
More information about the Secure-testing-team
mailing list