Bug 247563

Summary: www/tomcat7: Update to 7.0.104 (highly likely it's last 7.0.x release) with a lot of CVEs fixed + DEPRECATED
Product: Ports & Packages Reporter: Vladimir Druzenko <vvd>
Component: Individual Port(s)Assignee: Alex Dupre <ale>
Status: Closed FIXED    
Severity: Affects Some People CC: vvd
Priority: --- Flags: bugzilla: maintainer-feedback? (ale)
vvd: maintainer-feedback?
Version: Latest   
Hardware: Any   
OS: Any   
URL: https://tomcat.apache.org/tomcat-7.0-doc/changelog.html#Tomcat_7.0.104_(violetagg)
Attachments:
Description Flags
Update to 7.0.104 vvd: maintainer-approval?

Description Vladimir Druzenko freebsd_committer freebsd_triage 2020-06-26 13:55:29 UTC 
Created attachment 215960 [details]
Update to 7.0.104

Tested on 12.1 amd64.

https://tomcat.apache.org/tomcat-70-eol.html
Comment 1 Vladimir Druzenko freebsd_committer freebsd_triage 2020-06-26 14:05:03 UTC 
http://tomcat.apache.org/security-7.html
CVE-2020-9484
CVE-2020-1938
CVE-2020-1935
CVE-2019-17569
CVE-2019-17563
CVE-2019-12418
CVE-2019-0232
CVE-2019-0221
Comment 2 commit-hook freebsd_committer freebsd_triage 2020-06-28 22:05:05 UTC 
A commit references this bug:

Author: jrm
Date: Sun Jun 28 22:04:09 UTC 2020
New revision: 540733
URL: https://svnweb.freebsd.org/changeset/ports/540733

Log:
  www/tomcat7: Update to version 7.0.104

  This update fixes the following CVEs:

  CVE-2020-9484
  CVE-2020-1938
  CVE-2020-1935
  CVE-2019-17569
  CVE-2019-17563
  CVE-2019-12418
  CVE-2019-0232
  CVE-2019-0221

  http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.104

  PR:		247563
  Submitted by:	vvd@unislabs.com
  Approved by:	ports-secteam (zi)

Changes:
  head/www/tomcat7/Makefile
  head/www/tomcat7/distinfo
  head/www/tomcat7/pkg-plist
Comment 3 Vladimir Druzenko freebsd_committer freebsd_triage 2020-06-28 22:20:22 UTC 
Thanks.