Please update Tomcat7 in trusty-security to >= 7.0.55 to enable easier server info hiding
Bug #1400517 reported by
Dave Myron
This bug affects 4 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| tomcat7 (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned | ||
Bug Description
Tomcat 7.0.55 introduced the ability to more easily hide information leaks by adding some configuration to error valve configurations. Enabling these obfuscations help to minimize information sent out when an error is reached.
Please update the trusty-security (& related) versions of tomcat7 to at least 7.0.55 (current version as of 2014-12-08 is 7.0.57)
Revision history for this message
| Launchpad Janitor (janitor) wrote | #1 |
| Changed in tomcat7 (Ubuntu): | |
| status: | New → Confirmed |
Revision history for this message
| Luis Arias (kaaloo) wrote | #2 |
| information type: | Public → Public Security |
| Changed in tomcat7 (Ubuntu): | |
| assignee: | nobody → Alex Kiss (sysrex) |
| assignee: | Alex Kiss (sysrex) → nobody |
| Changed in tomcat7 (Ubuntu): | |
| assignee: | nobody → Alex Kiss (sysrex) |
| Changed in tomcat7 (Ubuntu): | |
| assignee: | Alex Kiss (sysrex) → nobody |
To post a comment you must log in.
Status changed to 'Confirmed' because the bug affects multiple users.