| |
@@ -31,7 +31,7 @@
|
| |
%global jspspec 2.3
|
| |
%global major_version 9
|
| |
%global minor_version 0
|
| |
- %global micro_version 71
|
| |
+ %global micro_version 75
|
| |
%global packdname apache-tomcat-%{version}-src
|
| |
%global servletspec 4.0
|
| |
%global elspec 3.0
|
| |
@@ -496,6 +496,10 @@
|
| |
%{appdir}/ROOT
|
| |
|
| |
%changelog
|
| |
+ * Fri Jun 02 2023 Sonia Xu <sonix@amazon.com> - 1:9.0.75-1
|
| |
+ - Update to 9.0.75
|
| |
+ - Resolves: rhbz#2210321 - CVE-2023-28709 tomcat: Fix for CVE-2023-24998 was incomplete
|
| |
+
|
| |
* Sun Jan 29 2023 Hui Wang <huwang@redhat.com> - 1:9.0.71-1
|
| |
- Update to 9.0.71
|
| |
- Remove osgi-annotations patch
|
| |
Update to 9.0.75 fixes CVE-2023-28709
https://bugzilla.redhat.com/show_bug.cgi?id=2210321
https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.74
- Fixed in
v9.0.74
sawv9.0.75
was available so thought to update it to latest versionProposing to update branches to
9.0.75
.Testing