The following security issues were fixed in tomcat:

- Fixed a tomcat user password information leak
(CVE-2011-2204)
- Fixed atomcat information leak and DoS (CVE-2011-2526)

Also one bug was fixed:
- fix bnc#702289 - suse manager pam ldap authentication
fails
* source CATALINA_HOME/bin/setenv.sh if exists