Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

tomcat: update minor versions #51561

Merged
merged 1 commit into from Dec 30, 2018
Merged

tomcat: update minor versions #51561

merged 1 commit into from Dec 30, 2018

Conversation

averelld
Copy link
Contributor

@averelld averelld commented Dec 5, 2018

Motivation for this change

I only tested the 8.5x update myself.

Things done
  • Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS)
  • Built on platform(s)
    • NixOS
    • macOS
    • other Linux distributions
  • Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
  • Tested compilation of all pkgs that depend on this change using nix-shell -p nox --run "nox-review wip"
  • Tested execution of all binary files (usually in ./result/bin/)
  • Determined the impact on package closure size (by running nix path-info -S before and after)
  • Assured whether relevant documentation is up to date
  • Fits CONTRIBUTING.md.

@c0bw3b
Copy link
Contributor

c0bw3b commented Dec 5, 2018

Changelog Tomcat 7.x :
https://tomcat.apache.org/tomcat-7.0-doc/changelog.html
CVE-2018-8014 was fixed in 7.0.89

Changelog 8.x :
https://tomcat.apache.org/tomcat-8.5-doc/changelog.html
CVE-2018-8014 was fixed in 8.5.32

Changelog 9.x :
https://tomcat.apache.org/tomcat-9.0-doc/changelog.html
CVE-2018-8014 fixed in 9.0.9

@c0bw3b c0bw3b added 1.severity: security 9.needs: port to stable A PR needs a backport to the stable release. labels Dec 5, 2018
@vcunat
Copy link
Member

vcunat commented Dec 30, 2018

/cc maintainer @danbst.

@vcunat vcunat merged commit 52d21ae into NixOS:master Dec 30, 2018
vcunat added a commit that referenced this pull request Dec 30, 2018
@vcunat
Merge #51561: tomcat: update minor versions (security)
4fc5480
@averelld averelld deleted the tomcat-updates branch December 31, 2018 01:58
@samueldr samueldr removed the 9.needs: port to stable A PR needs a backport to the stable release. label Apr 17, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
1.severity: security 10.rebuild-darwin: 1-10 10.rebuild-linux: 1-10
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@averelld @c0bw3b @vcunat @samueldr @GrahamcOfBorg