The following Fedora EPEL 8 Security updates need testing:
Age URL
46
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-89ad385971
chromium-103.0.5060.114-1.el8
2
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2022-83ed996f1e
rubygem-rack-2.2.4-1.el8
The following builds have been pushed to Fedora EPEL 8 updates-testing
grace-5.1.25-32.el8
libapreq2-2.17-1.el8
nordugrid-arc-6.16.0-1.el8
python-regex-2022.8.17-1.el8
tomcat-9.0.65-2.el8
Details about builds:
================================================================================
grace-5.1.25-32.el8 (FEDORA-EPEL-2022-5af316d2c1)
Numerical Data Processing and Visualization Tool
--------------------------------------------------------------------------------
Update Information:
Editor used by grace was set to incorrect name.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 2 2022 Terje Rosten <terje.rosten(a)ntnu.no> - 5.1.25-32
- No need for xterm on epel
* Sun Aug 28 2022 Terje Rosten <terje.rosten(a)ntnu.no> - 5.1.25-31
- Package name != binary name
* Thu Jul 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 5.1.25-30
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Mon Jan 31 2022 Terje Rosten <terje.rosten(a)ntnu.no> - 5.1.25-29
- Fix typo
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2120446 - can't open text editor (sensible-utils); should be
sensible-editor
https://bugzilla.redhat.com/show_bug.cgi?id=2120446
--------------------------------------------------------------------------------
================================================================================
libapreq2-2.17-1.el8 (FEDORA-EPEL-2022-ebbc78f3cb)
Apache HTTP request library
--------------------------------------------------------------------------------
Update Information:
Fix CVE-2022-22728.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 3 2022 Bojan Smojver <bojan(a)rexursive.com> - 2.17-1
- Bump up to 2.17
- CVE-2022-22728
* Thu Jul 21 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.16-6
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Wed Jun 1 2022 Jitka Plesnikova <jplesnik(a)redhat.com> - 2.16-5
- Perl 5.36 rebuild
* Thu Jan 20 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.16-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Thu Jul 22 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.16-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Sun May 23 2021 Jitka Plesnikova <jplesnik(a)redhat.com> - 2.16-2
- Perl 5.34 rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2123769 - CVE-2022-22728 libapreq2: multipart form parse memory corruption
[epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2123769
[ 2 ] Bug #2123770 - CVE-2022-22728 libapreq2: multipart form parse memory corruption
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2123770
--------------------------------------------------------------------------------
================================================================================
nordugrid-arc-6.16.0-1.el8 (FEDORA-EPEL-2022-0c99a88fe3)
Advanced Resource Connector Middleware
--------------------------------------------------------------------------------
Update Information:
ARC 6.16.0
--------------------------------------------------------------------------------
ChangeLog:
* Sat Sep 3 2022 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.16.0-1
- Update to version 6.16.0
- Drop patch adding missing include accepted upstream
- Build gfal2 plugin for EPEL 9 (dependency now available)
- Enable xmlsec for EPEL 9 (ARC now avoids SHA1 and tests succeed)
- Enable pylint for EPEL 9 (dependency now available)
- Enable pylint for Fedora 37+ (pylint now python 3.11 compatible)
* Sun Aug 21 2022 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.15.1-8
- Add BR systemd (no longer a dependency of systemd-devel)
* Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> - 6.15.1-7
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Sun Jul 3 2022 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.15.1-6
- Disable acix for Fedora 35 (new python twisted not supported)
* Sun Jul 3 2022 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.15.1-5
- Disable acix for Fedora 36 (new python twisted not supported)
* Thu Jun 30 2022 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.15.1-4
- Add missing include
* Fri Jun 24 2022 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 6.15.1-3
- Disable acix for Fedora 37 (new python twisted not supported)
* Tue Jun 14 2022 Python Maint <python-maint(a)redhat.com> - 6.15.1-2
- Rebuilt for Python 3.11
- Disable pylint for Fedora 37 (it is broken)
--------------------------------------------------------------------------------
================================================================================
python-regex-2022.8.17-1.el8 (FEDORA-EPEL-2022-24c89af5cf)
Alternative regular expression module, to replace re
--------------------------------------------------------------------------------
Update Information:
Update python-regex to the latest release.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Sep 2 2022 Thomas Moschny <thomas.moschny(a)gmx.de> - 2022.8.17-1
- Update to 2022.8.17.
* Fri Jul 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> -
2022.6.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Mon Jun 13 2022 Python Maint <python-maint(a)redhat.com> - 2022.6.2-2
- Rebuilt for Python 3.11
--------------------------------------------------------------------------------
================================================================================
tomcat-9.0.65-2.el8 (FEDORA-EPEL-2022-122c4310a1)
Apache Servlet/JSP Engine, RI for Servlet 4.0/JSP 2.3 API
--------------------------------------------------------------------------------
Update Information:
The initial introduction of tomcat to EPEL 8.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Sep 1 2022 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.65-2
- Cleaning up some unused deps and system properties
- Conditionally remove some classes that are not provided by the bnd
version shipped in el8
* Thu Jul 21 2022 Hui Wang <huwang(a)redhat.com> - 1:9.0.65-1
- Update to 9.0.65
* Fri Jul 8 2022 Jiri Vanek <jvanek(a)redhat.com> - 1:9.0.64-2
- Rebuilt for Drop i686 JDKs
* Tue Jun 21 2022 Hui Wang <huwang(a)redhat.com> - 1:9.0.64-1
- Update to 9.0.64
- Add osgi-annotations dependency back
* Thu Mar 10 2022 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.59-3
- Related: rhbz#2061424 Adjust fix so that it uses the proper env var
* Tue Mar 8 2022 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.59-2
- Resolves: rhbz#2061424 Add Java 9 start-up parameters to allow reflection
* Wed Mar 2 2022 Sonia Xu <sonix(a)amazon.com> - 1:9.0.59-1
- Update to 9.0.59
- Resolves: rhbz#2047419 - CVE-2022-23181 tomcat: local privilege escalation
vulnerability
* Sat Feb 5 2022 Jiri Vanek <jvanek(a)redhat.com> - 1:9.0.56-3
- Rebuilt for java-17-openjdk as system jdk
* Sat Jan 22 2022 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:9.0.56-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Thu Dec 9 2021 Hui Wang <huwang(a)redhat.com> - 1:9.0.56-1
- Update to 9.0.56
* Tue Oct 12 2021 Hui Wang <huwang(a)redhat.com> - 1:9.0.55-1
- Update to 9.0.55
* Tue Oct 12 2021 Hui Wang <huwang(a)redhat.com> - 1:9.0.54-1
- Update to 9.0.54
* Thu Sep 16 2021 Hui Wang <huwang(a)redhat.com> - 1:9.0.53-1
- Update to 9.0.53
* Wed Aug 18 2021 Hui Wang <huwang(a)redhat.com> - 1:9.0.52-1
- Update to 9.0.52
* Fri Jul 23 2021 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:9.0.50-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Tue Jul 6 2021 Hui Wang <huwang(a)redhat.com> - 1:9.0.50-1
- Update to 9.0.50
* Sat Jun 5 2021 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.45-4
- Add back logrotate config file per devel list request
- Add mvn virtual provides back for the servlet, el, and jsp spec impls
* Fri Jun 4 2021 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.45-3
- Drop geronimo-jaxrpc, which provided the webservices naming factory resources that are
generally unused
* Thu Jun 3 2021 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.45-2
- Remove examples webapps from subpackage
- Updates to javapackages-local removed %add_maven_depmap which broke the build,
so I removed the maven artifacts as they aren't very useful anyway
- Drop JSVC support as it's not very useful these days
- Drop geronimo-saaj as it's no longer required
* Thu Apr 22 2021 Hui Wang <huwang(a)redhat.com> - 1:9.0.45-1
- Update to 9.0.45
* Thu Mar 18 2021 Hui Wang <huwang(a)redhat.com> - 1:9.0.44-1
- Update to 9.0.44
* Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 1:9.0.43-2
- Rebuilt for updated systemd-rpm-macros
See
https://pagure.io/fesco/issue/2583.
* Wed Feb 3 2021 Hui Wang <huwang(a)redhat.com> - 1:9.0.43-1
- Update to 9.0.43
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:9.0.41-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Wed Dec 9 2020 Hui Wang <huwang(a)redhat.com> - 1:9.0.41-1
- Update to 9.0.41
* Wed Nov 18 2020 Hui Wang <huwang(a)redhat.com> - 1:9.0.40-1
- Update to 9.0.40
* Mon Oct 12 2020 Hui Wang <huwang(a)redhat.com> - 1:9.0.39-1
- Update to 9.0.39
* Wed Sep 16 2020 Hui Wang <huwang(a)redhat.com> - 1:9.0.38-1
- Update to 9.0.38
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:9.0.37-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Fri Jul 24 2020 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.37-3
- Related: rhbz#1857043 Temporarily remove OSGi metadata from tomcat jars
* Mon Jul 20 2020 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.37-2
- Resolves: rhbz#1857043 Add patch to reinclude o.a.t.util.net.jsse and
o.a.t.util.moduler.modules in tomcat-coyote.jar
* Mon Jul 13 2020 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.37-1
- Update to 9.0.37
* Sat Jul 11 2020 Jiri Vanek <jvanek(a)redhat.com> - 1:9.0.36-2
- Rebuilt for JDK-11, see
https://fedoraproject.org/wiki/Changes/Java11
* Wed Jun 10 2020 Hui Wang <huwang(a)redhat.com> - 1:9.0.36-1
- Upgrade to 9.0.36
* Sun May 31 2020 Hui Wang <huwang(a)redhat.com> - 1:9.0.35-2
- Upgrade to 9.0.35
* Wed Apr 22 2020 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.34-2
- Add updated catalina.policy patch to allow ECJ usage under the Security Manager
* Tue Apr 21 2020 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.34-1
- Update to 9.0.34
* Thu Mar 5 2020 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.31-1
- Update to 9.0.31
- Resolves: rhbz#1806398 - CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion
Vulnerability
* Fri Jan 31 2020 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:9.0.30-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Fri Dec 20 2019 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.30-1
- Update to 9.0.30
* Thu Sep 26 2019 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.26-2
- Resolves: rhbz#1510522 man page uid and gid mismatch for service accounts
* Thu Sep 26 2019 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.26-1
- Update to 9.0.26
- Resolves: rhbz#1523112 tomcat systemd does not cope with - in service names
- Resolves: rhbz#1510896 Problem to start tomcat with a user whose group has a name
different to the user
* Sat Jul 27 2019 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:9.0.21-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
* Wed Jul 17 2019 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.21-2
- Update build-classpath calls to ECJ to specify the JAR we want to use
* Tue Jun 18 2019 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.21-1
- Update to 9.0.21
* Tue Apr 2 2019 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.13-4
- Remove javadoc subpackage to drop the jpackage-utils dependency
* Wed Feb 20 2019 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.13-3
- Remove OSGi MANIFEST files, these are now included in the upstream Tomcat distribution
(as of 9.0.10)
- Remove unused dependencies, apache-commons-collections, apache-commons-daemon,
apache-commons-pool, junit
* Sun Feb 3 2019 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:9.0.13-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Thu Dec 13 2018 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.13-1
- Update to 9.0.13
- Resolves: rhbz#1636513 - CVE-2018-11784 tomcat: Open redirect in default servlet
* Sun Oct 14 2018 Peter Robinson <pbrobinson(a)fedoraproject.org> 1:9.0.10-2
- Drop legcy sys-v bits
* Tue Jul 31 2018 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.10-1
- Update to 9.0.10
- Resolves: rhbz#1624929 - CVE-2018-1336 tomcat: A bug in the UTF-8 decoder can lead to
DoS
- Resolves: rhbz#1579612 - CVE-2018-8014 tomcat: Insecure defaults in CORS filter enable
'supportsCredentials' for all origins
- Resolves: rhbz#1607586 - CVE-2018-8034 tomcat: host name verification missing in
WebSocket client
- Resolves: rhbz#1607584 - CVE-2018-8037 tomcat: Due to a mishandling of close in NIO/NIO2
connectors user sessions can get mixed up
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 1:9.0.7-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Tue May 1 2018 Coty Sutherland <csutherl(a)redhat.com> - 1:9.0.7-1
- Update to 9.0.7
* Thu Mar 15 2018 Coty Sutherland <csutherl(a)redhat.com> - 1:8.5.29-1
- Update to 8.5.29
- Resolves: rhbz#1548290 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in
security constraints can lead to unitended exposure of resources
- Resolves: rhbz#1548284 CVE-2018-1305 tomcat: Late application of security constraints
can lead to resource exposure for unauthorised users
* Fri Feb 9 2018 Igor Gnatenko <ignatenkobrain(a)fedoraproject.org> - 1:8.0.49-2
- Escape macros in %changelog
* Thu Feb 1 2018 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.49-1
- Update to 8.0.49
* Tue Dec 12 2017 Merlin Mathesius <mmathesi(a)redhat.com> - 1:8.0.47-3
- Cleanup spec file conditionals
* Tue Oct 24 2017 Troy Dawson <tdawson(a)redhat.com> - 1:8.0.47-2
- Change "zip -u" to "zip"
- Resolves: rhbz#1495241 [tomcat] zip -u in spec file causes race condition
* Wed Oct 4 2017 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.47-1
- Update to 8.0.47
- Resolves: rhbz#1497682 CVE-2017-12617 tomcat: Remote Code Execution bypass for
CVE-2017-12615
* Mon Aug 21 2017 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.46-1
- Update to 8.0.46
- Resolves: rhbz#1480620 CVE-2017-7674 tomcat: Cache Poisoning
* Thu Jul 27 2017 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:8.0.44-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Fri Jun 9 2017 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.44-1
- Resolves: rhbz#1459160 CVE-2017-5664 tomcat: Security constrained bypass in error page
mechanism
* Tue Apr 11 2017 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.43-1
- Update to 8.0.43
* Fri Mar 31 2017 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.42-1
- Update to 8.0.42
* Thu Feb 16 2017 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.41-1
- Update to 8.0.41
- Resolves: rhbz#1403825 CVE-2016-8745 tomcat: information disclosure due to incorrect
Processor sharing
* Sat Feb 11 2017 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:8.0.39-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Tue Nov 29 2016 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.39-1
- Update to 8.0.39
- Resolves: rhbz#1397493 CVE-2016-6816 CVE-2016-6817 CVE-2016-8735 tomcat: various flaws
* Tue Oct 25 2016 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.38-1
- Update to 8.0.38
* Sun Oct 23 2016 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.37-3
- Resolves: rhbz#1383216 CVE-2016-6325 tomcat: tomcat writable config files allow
privilege escalation
- Resolves: rhbz#1382310 CVE-2016-5425 tomcat: Local privilege escalation via
systemd-tmpfiles service
* Tue Sep 13 2016 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.37-1
- Rebase to 8.0.37
- Resolves: rhbz#1375581 CVE-2016-5388 CGI sets environmental variable based on user
supplied Proxy request header
- Resolves: rhbz#1370262 catalina.out is no longer in use in the main package, but still
gets rotated
* Thu Aug 11 2016 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.36-2
- Related: rhbz#1349469 Correct typo in changelog entry
* Mon Aug 8 2016 Coty Sutherland <csutherl(a)redhat.com> - 1:8.0.36-1
- Resolves: rhbz#1349469 CVE-2016-3092 tomcat: Usage of vulnerable FileUpload package can
result in denial of service (updates to 8.0.36)
- Resolves: rhbz#1364056 The command tomcat-digest doesn't work
- Resolves: rhbz#1363884 The tomcat-tool-wrapper script is broken
- Resolves: rhbz#1347864 The systemd service unit does not allow tomcat to shut down
gracefully
- Resolves: rhbz#1347835 The security manager doesn't work correctly (JSPs cannot be
compiled)
- Resolves: rhbz#1341853 rpm -V tomcat fails on /var/log/tomcat/catalina.out
- Resolves: rhbz#1341850 tomcat-jsvc.service has TOMCAT_USER value hard-coded
- Resolves: rhbz#1359737 Missing maven depmap for the following artifacts:
org.apache.tomcat:tomcat-websocket, org.apache.tomcat:tomcat-websocket-api
- Resolves: asfbz#59960 Building javadocs with java8 fails
* Wed Mar 2 2016 Ivan Afonichev <ivan.afonichev(a)gmail.com> - 1:8.0.32-4
- Revert sysconfig migration changes, resolves: rhbz#1311771, rhbz#1311905
- Add /etc/tomcat/conf.d/ with shell expansion support, resolves rhbz#1293636
* Sat Feb 27 2016 Ivan Afonichev <ivan.afonichev(a)gmail.com> - 1:8.0.32-3
- Load sysconfig from tomcat.conf, resolves: rhbz#1311771, rhbz#1311905
- Set default javax.sql.DataSource factory to apache commons one, resolves rhbz#1214381
* Sun Feb 21 2016 Ivan Afonichev <ivan.afonichev(a)gmail.com> - 1:8.0.32-2
- Fix symlinks from $CATALINA_HOME/lib perspective, resolves: rhbz#1308685
* Thu Feb 11 2016 Ivan Afonichev <ivan.afonichev(a)gmail.com> - 1:8.0.32-1
- Updated to 8.0.32
- Remove log4j support. It has never been working actually. See rhbz#1236297
- Move shipped config to /etc/sysconfig/tomcat. /etc/tomcat/tomcat.conf can now be used to
override it with shell expansion, resolves rhbz#1293636
- Recommend tomcat-native, resolves: rhbz#1243132
* Wed Feb 10 2016 Coty Sutherland <csutherl(a)redhat.com> 1:8.0.26-4
- Resolves: rhbz#1286800 Failed to start component due to wrong
allowLinking="true" in context.xml
- Program /bin/nologin does not exist (#1302718)
* Fri Feb 5 2016 Fedora Release Engineering <releng(a)fedoraproject.org> -
1:8.0.26-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Wed Nov 11 2015 Robert Scheck <robert(a)fedoraproject.org> 1:8.0.26-2
- CATALINA_OPTS are only read when SECURITY_MANAGER is true (#1147105)
* Thu Aug 27 2015 Alexander Kurtakov <akurtako(a)redhat.com> 1:8.0.26-1
- Update to 8.0.26.
* Fri Jul 10 2015 Alexander Kurtakov <akurtako(a)redhat.com> 1:8.0.24-2
- Update to 8.0.24.
* Fri Jun 19 2015 Alexander Kurtakov <akurtako(a)redhat.com> 1:8.0.23-2
- Drop javax.el:el-api alias.
* Thu Jun 18 2015 Alexander Kurtakov <akurtako(a)redhat.com> 1:8.0.23-1
- Update to 8.0.23.
* Thu Jun 18 2015 Alexander Kurtakov <akurtako(a)redhat.com> 1:8.0.20-3
- Drop jetty alias for servlet.
* Tue Jun 9 2015 Michal Srb <msrb(a)redhat.com> - 1:8.0.20-2
- Fix metadata for org.apache.tomcat:{tomcat-jni,tomcat-util-scan}
* Thu Mar 5 2015 Alexander Kurtakov <akurtako(a)redhat.com> 1:8.0.18-5
- Rebuild against tomcat-taglibs-standard.
* Wed Mar 4 2015 Alexander Kurtakov <akurtako(a)redhat.com> 1:8.0.18-4
- Fix epoch bumped el_1_0_api that would override all other glassfish/jboss/etc. due to
wrong epoch.
- Drop old provides.
* Tue Mar 3 2015 Stephen Gallagher <sgallagh(a)redhat.com> 1:8.0.18-3
- Bump epoch to maintain upgrade path from Fedora 22
* Mon Feb 16 2015 Michal Srb <msrb(a)redhat.com> - 0:8.0.18-2
- Install POM files for org.apache.tomcat:{tomcat-jni,tomcat-util-scan}
* Sun Feb 15 2015 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:8.0.18-1
- Updated to 8.0.18
* Sat Sep 20 2014 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:8.0.12-1
- Updated to 8.0.12
- Substitute libnames in catalina-tasks.xml, resolves: rhbz#1126439
- Use CATALINA_OPTS only on start, resolves: rhbz#1051194
* Mon Jun 16 2014 Michal Srb <msrb(a)redhat.com> - 0:7.0.54-3
- jsp-api requires el-api
* Sun Jun 8 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0:7.0.54-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Thu Jun 5 2014 Alexander Kurtakov <akurtako(a)redhat.com> 0:7.0.54-1
- Update to upstream 7.0.54 - fixes compile with Java 8.
* Wed May 21 2014 Alexander Kurtakov <akurtako(a)redhat.com> 0:7.0.52-3
- Drop servlet/el api provides to reduce user machines ending with both.
* Sun Mar 30 2014 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.52-2
- Don't provide maven javax.jsp:jsp-api and javax.servlet.jsp:javax.servlet.jsp-api
resolves: rhbz#1076949
- Move log4j support into subpackage, resolves: rhbz#1027716
* Wed Mar 26 2014 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.52-1
- Updated to 7.0.52
- Rewrite jsvc implementation, resolves: rhbz#1051743
- Switch to java-headless R, resolves: rhbz#1068566
- Create and own %{_localstatedir}/lib/tomcats, resolves: rhbz#1026741
- Add pom for tomcat-jdbc, resolves: rhbz#1011003
* Tue Jan 21 2014 Mikolaj Izdebski <mizdebsk(a)redhat.com> - 0:7.0.47-3
- Fix installation of Maven metadata for tomcat-juli.jar
- Resolves: rhbz#1033664
* Wed Jan 15 2014 Stanislav Ochotnicky <sochotnicky(a)redhat.com> - 0:7.0.47-2
- Rebuild for bug #1033664
* Sun Nov 3 2013 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.47-1
- Updated to 7.0.47
- Fix java.security.policy
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0:7.0.42-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Fri Jul 12 2013 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.42-2
- Remove jpackage-utils R
* Thu Jul 11 2013 Dmitry Tikhonov <squall.sama(a)gmail.com> 0:7.0.42-1
- Updated to 7.0.42
* Tue Jun 11 2013 Paul Komkoff <i(a)stingr.net> 0:7.0.40-3
- Dropped systemv inits. Bye-bye.
- Updated the systemd wrappers to allow running multiple instances.
Added wrapper scripts to do that, ported the original non-named
service file to work with the same wrappers, updated
/usr/sbin/tomcat to call systemctl.
* Sat May 11 2013 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.40-1
- Updated to 7.0.40
- Resolves: rhbz 956569 added missing commons-pool link
- Remove ant-nodeps BR
* Mon Mar 4 2013 Mikolaj Izdebski <mizdebsk(a)redhat.com> - 0:7.0.37-2
- Add depmaps for org.eclipse.jetty.orbit
- Resolves: rhbz#917626
* Wed Feb 20 2013 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.39-1
- Updated to 7.0.39
* Wed Feb 20 2013 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.37-1
- Updated to 7.0.37
* Mon Feb 4 2013 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.35-1
- Updated to 7.0.35
- systemd SuccessExitStatus=143 for proper stop exit code processing
* Mon Dec 24 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.34-1
- Updated to 7.0.34
- ecj >= 4.2.1 now required
- Resolves: rhbz 889395 concat classpath correctly; chdir to $CATALINA_HOME
* Fri Dec 7 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.33-2
- Resolves: rhbz 883806 refix logdir ownership
* Sun Dec 2 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.33-1
- Updated to 7.0.33
- Resolves: rhbz 873620 need chkconfig for update-alternatives
* Wed Oct 17 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.32-1
- Updated to 7.0.32
- Resolves: rhbz 842620 symlinks to taglibs
* Fri Aug 24 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.29-1
- Updated to 7.0.29
- Add pidfile as tmpfile
- Use systemd for running as unprivileged user
- Resolves: rhbz 847751 upgrade path was broken
- Resolves: rhbz 850343 use new systemd-rpm macros
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0:7.0.28-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Mon Jul 2 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.28-1
- Updated to 7.0.28
- Resolves: rhbz 820119 Remove bundled apache-commons-dbcp
- Resolves: rhbz 814900 Added tomcat-coyote POM
- Resolves: rhbz 810775 Remove systemv stuff from %post scriptlet
- Remove redhat-lsb R
* Mon Apr 9 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.27-2
- Fixed native download hack
* Sat Apr 7 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.27-1
- Updated to 7.0.27
- Fixed jakarta-taglibs-standard BR and R
* Wed Mar 21 2012 Stanislav Ochotnicky <sochotnicky(a)redhat.com> - 0:7.0.26-2
- Add more depmaps to J2EE apis to help jetty/glassfish updates
* Wed Mar 14 2012 Juan Hernandez <juan.hernandez(a)redhat.com> 0:7.0.26-2
- Added the POM files for tomcat-api and tomcat-util (#803495)
* Wed Feb 22 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.26-1
- Updated to 7.0.26
- Bug 790334: Change ownership of logdir for logrotate
* Thu Feb 16 2012 Krzysztof Daniel <kdaniel(a)redhat.com> 0:7.0.25-4
- Bug 790694: Priorities of jsp, servlet and el packages updated.
* Wed Feb 8 2012 Krzysztof Daniel <kdaniel(a)redhat.com> 0:7.0.25-3
- Dropped indirect dependecy to tomcat 5
* Sun Jan 22 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.25-2
- Added hack for maven depmap of tomcat-juli absolute link [ -f ] pass correctly
* Sat Jan 21 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.25-1
- Updated to 7.0.25
- Removed EntityResolver patch (changes already in upstream sources)
- Place poms and depmaps in the same package as jars
- Added javax.servlet.descriptor to export-package of servlet-api
- Move several chkconfig actions and reqs to systemv subpackage
- New maven depmaps generation method
- Add patch to support java7. (patch sent upstream).
- Require java >= 1:1.6.0
* Fri Jan 13 2012 Krzysztof Daniel <kdaniel(a)redhat.com> 0:7.0.23-5
- Exported javax.servlet.* packages in version 3.0 as 2.6 to make
servlet-api compatible with Eclipse.
* Thu Jan 12 2012 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.23-4
- Move jsvc support to subpackage
* Wed Jan 11 2012 Alexander Kurtakov <akurtako(a)redhat.com> 0:7.0.23-2
- Add EntityResolver setter patch to jasper for jetty's need. (patch sent upstream).
* Mon Dec 12 2011 Joseph D. Wagner <joe(a)josephdwagner.info> 0:7.0.23-3
- Added support to /usr/sbin/tomcat-sysd and /usr/sbin/tomcat for
starting tomcat with jsvc, which allows tomcat to perform some
privileged operations (e.g. bind to a port < 1024) and then switch
identity to a non-privileged user. Must add USE_JSVC="true" to
/etc/tomcat/tomcat.conf or /etc/sysconfig/tomcat.
* Mon Nov 28 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.23-1
- Updated to 7.0.23
* Fri Nov 11 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.22-2
- Move tomcat-juli.jar to lib package
- Drop %update_maven_depmap as in tomcat6
- Provide native systemd unit file ported from tomcat6
* Thu Oct 6 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.22-1
- Updated to 7.0.22
* Mon Oct 3 2011 Rex Dieter <rdieter(a)fedoraproject.org> - 0:7.0.21-3.1
- rebuild (java), rel-eng#4932
* Mon Sep 26 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.21-3
- Fix basedir mode
* Tue Sep 20 2011 Roland Grunberg <rgrunber(a)redhat.com> 0:7.0.21-2
- Add manifests for el-api, jasper-el, jasper, tomcat, and tomcat-juli.
* Thu Sep 8 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.21-1
- Updated to 7.0.21
* Mon Aug 15 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.20-3
- Require java = 1:1.6.0
* Mon Aug 15 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.20-2
- Require java < 1.7.0
* Mon Aug 15 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.20-1
- Updated to 7.0.20
* Tue Jul 26 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.19-1
- Updated to 7.0.19
* Tue Jun 21 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.16-1
- Updated to 7.0.16
* Mon Jun 6 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.14-3
- Added initial systemd service
- Fix some paths
* Sat May 21 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.14-2
- Fixed http source link
- Securify some permissions
- Added licenses for el-api and servlet-api
- Added dependency on jpackage-utils for the javadoc subpackage
* Sat May 14 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.14-1
- Updated to 7.0.14
* Thu May 5 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.12-4
- Provided local paths for libs
- Fixed dependencies
- Fixed update temp/work cleanup
* Mon May 2 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.12-3
- Fixed package groups
- Fixed some permissions
- Fixed some links
- Removed old tomcat6 crap
* Thu Apr 28 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.12-2
- Package now named just tomcat instead of tomcat7
- Removed Provides: %{name}-log4j
- Switched to apache-commons-* names instead of jakarta-commons-* .
- Remove the old changelog
- BR/R java >= 1:1.6.0 , same for java-devel
- Removed old tomcat6 crap
* Wed Apr 27 2011 Ivan Afonichev <ivan.afonichev(a)gmail.com> 0:7.0.12-1
- Tomcat7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1745960 - Request to build tomcat for EPEL 8
https://bugzilla.redhat.com/show_bug.cgi?id=1745960
--------------------------------------------------------------------------------