Security update for tomcat
SUSE Security Update: Security update for tomcat
Announcement ID: | SUSE-SU-2015:1281-1 |
Rating: | moderate |
References: | #931442 |
Affected Products: |
An update that fixes one vulnerability is now available.
Description:
This update fixes the following security issue:
- CVE-2014-7810: Security manager bypass via EL expression
(bnc#931442)
Patch Instructions:
To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Server 12:
zypper in -t patch SUSE-SLE-SERVER-12-2015-336=1
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Server 12 (noarch):
- tomcat-7.0.55-8.2
- tomcat-admin-webapps-7.0.55-8.2
- tomcat-docs-webapp-7.0.55-8.2
- tomcat-el-2_2-api-7.0.55-8.2
- tomcat-javadoc-7.0.55-8.2
- tomcat-jsp-2_2-api-7.0.55-8.2
- tomcat-lib-7.0.55-8.2
- tomcat-servlet-3_0-api-7.0.55-8.2
- tomcat-webapps-7.0.55-8.2