Bug 247563 - www/tomcat7: Update to 7.0.104 (highly likely it's last 7.0.x release) with a lot of CVEs fixed + DEPRECATED
Summary: www/tomcat7: Update to 7.0.104 (highly likely it's last 7.0.x release) with a...
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Alex Dupre
URL: https://tomcat.apache.org/tomcat-7.0-...
Keywords:
Depends on:
Blocks:
 
Reported: 2020-06-26 13:55 UTC by VVD
Modified: 2020-06-28 22:20 UTC (History)
1 user (show)

See Also:
bugzilla: maintainer-feedback? (ale)
vvd: maintainer-feedback?


Attachments
Update to 7.0.104 (5.14 KB, patch)
2020-06-26 13:55 UTC, VVD
vvd: maintainer-approval?
Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description VVD 2020-06-26 13:55:29 UTC
Created attachment 215960 [details]
Update to 7.0.104

Tested on 12.1 amd64.

https://tomcat.apache.org/tomcat-70-eol.html
Comment 1 VVD 2020-06-26 14:05:03 UTC
http://tomcat.apache.org/security-7.html
CVE-2020-9484
CVE-2020-1938
CVE-2020-1935
CVE-2019-17569
CVE-2019-17563
CVE-2019-12418
CVE-2019-0232
CVE-2019-0221
Comment 2 commit-hook freebsd_committer 2020-06-28 22:05:05 UTC
A commit references this bug:

Author: jrm
Date: Sun Jun 28 22:04:09 UTC 2020
New revision: 540733
URL: https://svnweb.freebsd.org/changeset/ports/540733

Log:
  www/tomcat7: Update to version 7.0.104

  This update fixes the following CVEs:

  CVE-2020-9484
  CVE-2020-1938
  CVE-2020-1935
  CVE-2019-17569
  CVE-2019-17563
  CVE-2019-12418
  CVE-2019-0232
  CVE-2019-0221

  http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.104

  PR:		247563
  Submitted by:	vvd@unislabs.com
  Approved by:	ports-secteam (zi)

Changes:
  head/www/tomcat7/Makefile
  head/www/tomcat7/distinfo
  head/www/tomcat7/pkg-plist
Comment 3 VVD 2020-06-28 22:20:22 UTC
Thanks.