[ubuntu/questing-proposed] tomcat10 10.1.40-1ubuntu1 (Accepted)

Bruce Cable bruce.cable at canonical.com
Thu Aug 21 14:10:29 UTC 2025 

tomcat10 (10.1.40-1ubuntu1) questing; urgency=medium

  * SECURITY UPDATE: Security Constraint Bypass
    - debian/patches/CVE-2025-46701.patch: Refactor CGI servlet to
      access resources via WebResources
    - CVE-2025-46701

Date: Fri, 20 Jun 2025 14:15:00 +1000
Changed-By: Bruce Cable <bruce.cable at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/tomcat10/10.1.40-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Fri, 20 Jun 2025 14:15:00 +1000
Source: tomcat10
Built-For-Profiles: noudeb
Architecture: source
Version: 10.1.40-1ubuntu1
Distribution: questing
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Bruce Cable <bruce.cable at canonical.com>
Changes:
 tomcat10 (10.1.40-1ubuntu1) questing; urgency=medium
 .
   * SECURITY UPDATE: Security Constraint Bypass
     - debian/patches/CVE-2025-46701.patch: Refactor CGI servlet to
       access resources via WebResources
     - CVE-2025-46701
Checksums-Sha1:
 960bce81c7adf3bebf5a956f28dca09efb6edc03 2993 tomcat10_10.1.40-1ubuntu1.dsc
 485fb52dfaeb0460e4ec8f602e2eadb8d304c3ea 41600 tomcat10_10.1.40-1ubuntu1.debian.tar.xz
 550bae76ae3e365be8d1f3828e14dd8066f84f7e 15649 tomcat10_10.1.40-1ubuntu1_source.buildinfo
Checksums-Sha256:
 0aade17738dd775ac2401631114d104e79f13f2f6246ad50fb0deef7bcb76830 2993 tomcat10_10.1.40-1ubuntu1.dsc
 632491525b68228232ec8b3245d5778ba23ae0f3c4761f2b69ab8363d78c758a 41600 tomcat10_10.1.40-1ubuntu1.debian.tar.xz
 a627d100b4b2819bfede5e4deafba9dc7345f4cc649e3c27051435f6dda22779 15649 tomcat10_10.1.40-1ubuntu1_source.buildinfo
Files:
 506ec8a625607e73eb544cc276b5f334 2993 java optional tomcat10_10.1.40-1ubuntu1.dsc
 457558c7a4886d00dc2bdfcfa1750579 41600 java optional tomcat10_10.1.40-1ubuntu1.debian.tar.xz
 73d7bd0b7f4755106da0b5204eb4e34a 15649 java optional tomcat10_10.1.40-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Java Maintainers <pkg-java-maintainers at lists.alioth.debian.org>

More information about the Questing-changes mailing list