Debian Patches

Status for tomcat10/10.1.6-1+deb12u2

Patch Description Author Forwarded Bugs Origin Last update
0004-split-deploy-webapps-target-from-deploy-target.patch [PATCH] split deploy-webapps target from deploy target Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org> no 2010-06-28
0005-skip-test-failures.patch Ignore the failing tests Emmanuel Bourg <ebourg@apache.org> not-needed 2023-01-16
0009-Use-java.security.policy-file-in-catalina.sh.patch [PATCH] Use java.security.policy file in catalina.sh Make sure catalina.sh uses the Debian/Ubuntu java.security.policy file location when
Tomcat is started with a security manager.		 Adam Guthrie <asguthrie@gmail.com> not-needed debian 2010-06-28
0010-debianize-build-xml.patch Disable usage of embedded library copies James Pages <james.page@canonical.com> no 2011-05-16
0013-dont-look-for-build-properties-in-user-home.patch Don't look for build.properties in the user home directory.

This directory doesn't exist on the builders and the attempt to load
a property file there causes a build failure.		 Jakub Adam <jakub.adam@ktknet.cz> not-needed 2023-01-16
0018-fix-manager-webapp.patch This patch changes the manager path from webapps/manager to

../tomcat10-admin/manager		 "ubuntu@iam.tj" <ubuntu@iam.tj> no 2013-08-01
0019-add-distribution-to-error-page.patch Adds the name of the distribution to the version of Tomcat

reported on the error pages (i.e. 'Apache Tomcat/8.0.x (Debian)')		 Yolanda Robla <yolanda.robla@canonical.com> not-needed debian 2023-01-16
0023-disable-shutdown-by-socket.patch Disables the shutdown port (8005) by default Emmanuel Bourg <ebourg@apache.org> no 2023-01-16
0024-systemd-log-formatter.patch Adds a log formatter suitable for systemd Emmanuel Bourg <ebourg@apache.org> no 2023-01-16
0025-invalid-configuration-exit-status.patch Fix the exit status when Tomcat terminates because the configuration is invalid Emmanuel Bourg <ebourg@apache.org> yes upstream 2023-01-16
0026-easymock4-compatibility.patch Fixes the compatibility with the version of Easymock in Debian Emmanuel Bourg <ebourg@apache.org> no 2023-01-16
0021-dont-test-unsupported-ciphers.patch 0021-dont-test-unsupported-ciphers
Don't check the IDEA cipher during the tests since it is disabled in Debian (see #327739)
Also ignore ARIA which is disabled by default in OpenSSL.		 Markus Koschany <apo@debian.org> not-needed 2021-09-24
exclude-TestJNDIRealmIntegration.patch exclude TestJNDIRealmIntegration
Exclude TestJNDIRealmIntegration.java because it FTBFS due to missing
dependencies.		 Markus Koschany <apo@debian.org> not-needed 2021-09-24
disable-jacoco.patch disable-jacoco Markus Koschany <apo@debian.org> not-needed 2023-02-01
CVE-2023-28709.patch Fix parameter counting logic no upstream, https://github.com/apache/tomcat/commit/ba848da71c523d94950d3c53c19ea155189df9dc
CVE-2023-41080.patch Avoid protocol relative redirects no upstream, https://github.com/apache/tomcat/commit/bb4624a9f3e69d495182ebfa68d7983076407a27
CVE-2023-42795.patch Improve handling of failures during recycle() methods no upstream, https://github.com/apache/tomcat/commit/9375d67106f8df9eb9d7b360b2bef052fe67d3d4
CVE-2023-44487.patch Improvements to HTTP/2 overhead protection. no upstream, https://github.com/apache/tomcat/commit/76bb4bfbfeae827dce896f650655bbf6e251ed49
CVE-2023-45648.patch Align processing of trailer headers with standard processing no upstream, https://github.com/apache/tomcat/commit/8ecff306507be8e4fd3adee1ae5de1ea6661a8f4
CVE-2024-24549.patch CVE-2024-24549 Markus Koschany <apo@debian.org> no debian https://github.com/apache/tomcat/commit/d07c82194edb69d99b438828fe2cbfadbb207843 2024-04-05
CVE-2024-23672.patch CVE-2024-23672 Markus Koschany <apo@debian.org> no debian https://github.com/apache/tomcat/commit/0052b374684b613b0c849899b325ebe334ac6501 2024-04-10
CVE-2023-46589.patch CVE-2023-46589 Markus Koschany <apo@debian.org> no debian https://github.com/apache/tomcat/commit/b5776d769bffeade865061bc8ecbeb2b56167b08 2024-04-10

All known versions for source package 'tomcat10'

Links