File tomcat.changes of Package tomcat.37363
-------------------------------------------------------------------
Thu Feb 6 13:49:23 UTC 2025 - Ricardo Mestre <ricardo.mestre@suse.com>
- Fixed CVEs:
* CVE-2024-50379: tomcat,tomcat10,tomcat6: Apache Tomcat: RCE due to TOCTOU
issue in JSP compilation (bsc#1234663)
* CVE-2024-54677: tomcat,tomcat10,tomcat6: Apache Tomcat: DoS in examples web
application (bsc#1234664)
- Added patches:
* tomcat-9.0.36-CVE-2024-50379.patch
* tomcat-9.0.36-CVE-2024-54677.patch
-------------------------------------------------------------------
Thu Jan 18 13:04:02 UTC 2024 - Michele Bussolotto <michele.bussolotto@suse.com>
- Fixed CVEs:
* CVE-2023-46589: HTTP request smuggling due to incorrect headers
parsing (bsc#1217649)
- Added patches:
* tomcat-8.0-CVE-2023-46589.patch
-------------------------------------------------------------------
Tue Nov 28 16:25:10 UTC 2023 - Ricardo Mestre <ricardo.mestre@suse.com>
- replace prep setup and patches macro with autosetup
-------------------------------------------------------------------
Mon Oct 30 16:18:52 UTC 2023 - Michele Bussolotto <michele.bussolotto@suse.com>
- Fixed CVEs:
* CVE-2023-42795: Improve handling of failures during recycle()
methods (bsc#1216119)
- Added patches:
* tomcat-8.0.53-CVE-2023-42795.patch
-------------------------------------------------------------------
Fri Sep 22 10:22:23 UTC 2023 - Michele Bussolotto <michele.bussolotto@suse.com>
- Fixed CVEs:
* CVE-2023-41080: Avoid protocol relative redirects in FORM authentication. (bsc#1214666)
- Added patches:
* tomcat-8.0.53-CVE-2023-41080.patch
-------------------------------------------------------------------
Fri May 26 13:34:56 UTC 2023 - Michele Bussolotto <michele.bussolotto@suse.com>
- Fixed CVEs:
* CVE-2023-28709: Fix for CVE-2023-24998 was incomplete (bsc#1211608)
- Added patches:
* tomcat-8.0.53-CVE-2023-28709.patch
-------------------------------------------------------------------
Wed Mar 1 08:36:38 UTC 2023 - Michele Bussolotto <michele.bussolotto@suse.com>
- Fixed CVEs:
* CVE-2023-24998: tomcat,tomcat6: FileUpload DoS with excessive parts (bsc#1208513)
- Added patches:
* tomcat-8.0.53-CVE-2023-24998.patch
-------------------------------------------------------------------
Tue Nov 29 15:56:44 UTC 2022 - Michele Bussolotto <michele.bussolotto@suse.com>
- Use catalina.out for logging (bsc#1205647)
- Added patches:
* tomcat-8.0-fix_catalina.patch
-------------------------------------------------------------------
Mon Nov 21 09:12:15 UTC 2022 - Michele Bussolotto <michele.bussolotto@suse.com>
- Fixed CVEs:
* CVE-2022-42252: reject invalid content-length requests. (bsc#1204918)
- Added patches:
* tomcat-8.0.53-CVE-2022-42252.patch
-------------------------------------------------------------------
Thu Apr 7 11:16:42 UTC 2022 - Michele Bussolotto <michele.bussolotto@suse.com>
- Security hardening. Deprecate getResources() and always return null. (bsc#1198136)
- Added patch: tomcat-8.0-hardening_getResources.patch
-------------------------------------------------------------------
Wed Feb 16 09:12:05 UTC 2022 - Michele Bussolotto <michele.bussolotto@suse.com>
- Remove log4j (bsc#1196137)
-------------------------------------------------------------------
Fri Feb 11 15:50:30 UTC 2022 - Michele Bussolotto <michele.bussolotto@suse.com>
- Fixed CVEs:
* CVE-2021-30640: Escape parameters in JNDI Realm queries (bsc#1188279)
* CVE-2022-23181: Make calculation of session storage location more robust (bsc#1195255)
- Added patches:
* tomcat-8.0.53-CVE-2021-30640.patch
* tomcat-8.0.53-CVE-2022-23181.patch
-------------------------------------------------------------------
Fri Apr 23 08:06:52 UTC 2021 - Abid Mehmood <amehmood@suse.com>
- CVE-2021-25329: Complete fix for CVE-2020-9484 (bsc#1182909)
- Added patch:
* tomcat-8.0.53-CVE-2021-25329.patch
-------------------------------------------------------------------
Mon Feb 22 12:18:35 UTC 2021 - Abid Mehmood <amehmood@suse.com>
- Log if file access is blocked due to symlinks: CVE-2021-24122 (bsc#1180947)
- Added patch:
* tomcat-8.0.53-CVE-2021-24122.patch
-------------------------------------------------------------------
Thu Oct 29 14:34:46 UTC 2020 - Matei Albu <malbu@suse.com>
- Don't give write permissions for the tomcat group on files and
directories where it's not needed (bsc#1172562)
-------------------------------------------------------------------
Tue Aug 25 08:45:21 UTC 2020 - Matei Albu <malbu@suse.com>
- Fixed CVE-2020-1935 (bsc#1164860)
- Added patch: tomcat-8.0.53-CVE-2020-1935.patch
-------------------------------------------------------------------
Mon Aug 24 09:20:14 UTC 2020 - Matei Albu <malbu@suse.com>
- Fixed CVE-2020-13935 (bsc#1174117)
- Added patch: tomcat-8.0.53-CVE-2020-13935.patch
-------------------------------------------------------------------
Wed Jun 17 10:43:25 UTC 2020 - Matei Albu <malbu@suse.com>
- Change permission of file /usr/lib/tmpfiles.d/tomcat.conf
to 644 (bsc#1172405)
-------------------------------------------------------------------
Wed Jun 3 15:32:19 UTC 2020 - Matei Albu <malbu@suse.com>
- Change ownership of /usr/lib/tmpfiles.d/tomcat.conf:
CVE-2020-8022 (bsc#1172405)
-------------------------------------------------------------------
Wed May 27 13:10:17 UTC 2020 - Matei Albu <malbu@suse.com>
- Fixed CVEs:
* CVE-2019-12418 (bsc#1159723)
* CVE-2019-0221 (bsc#1136085)
* CVE-2019-17569 (bsc#1164825)
* CVE-2019-17563 (bsc#1159729)
- Added patches:
* tomcat-8.0.53-CVE-2019-12418.patch
* tomcat-8.0.53-CVE-2019-0221.patch
* tomcat-8.0.53-CVE-2019-17569.patch
* tomcat-8.0.53-CVE-2019-17563.patch
- Rebased patch:
* tomcat-8.0-sle.catalina.policy.patch
-------------------------------------------------------------------
Thu May 21 07:18:32 UTC 2020 - Simon Lees <simonf.lees@suse.com>
- Fix for CVE-2020-9484 (bsc#1171928)
- Added patch tomcat-8.0.55-CVE-2020-9484.patch
-------------------------------------------------------------------
Fri Mar 13 10:29:22 UTC 2020 - Matei Albu <malbu@suse.com>
- Fix for CVE-2020-1938 (bsc#1164692)
- Added patch tomcat-8.0.53-CVE-2020-1938.patch
-------------------------------------------------------------------
Tue Nov 13 09:15:19 UTC 2018 - malbu@suse.com
- Fix for JMX error: ThreadPool.socketProperties is not Serializable
(https://bz.apache.org/bugzilla/show_bug.cgi?id=62871).
Added patch tomcat-8.0.53-bug62871.patch.
-------------------------------------------------------------------
Wed Nov 7 13:36:47 CET 2018 - mantel@suse.de
- increase maximum number of threads and open files for tomcat (bsc#1111966)
-------------------------------------------------------------------
Tue Oct 16 11:11:56 UTC 2018 - malbu@suse.com
- Fix for CVE-2018-11784 (bsc#1110850)
- Added patch tomcat-8.0.53-CVE-2018-11784.patch
-------------------------------------------------------------------
Tue Aug 14 12:38:04 UTC 2018 - malbu@suse.com
- Version update to 8.0.53:
* Another bugfix release, for full details see:
http://tomcat.apache.org/tomcat-8.0-doc/changelog.html
* Fixed CVEs:
- CVE-2018-1336 (bsc#1102400)
- CVE-2018-8034 (bsc#1102379)
- CVE-2018-8037 (bsc#1102410)
- Removed patch tomcat-CVE-2018-8014.patch
- Rebased and renamed patch tomcat-8.0.33-JDTCompiler-java.patch to
tomcat-8.0.53-JDTCompiler-java.patch
- Added patch tomcat-8.0.53-buildxml-javac-release.patch to remove
unavailable "release" attribute for javac
-------------------------------------------------------------------
Mon Jul 23 19:35:36 UTC 2018 - malbu@suse.com
- Patched CVE-2018-8014 (bsc#1093697)
- Empty tomcat-8.0.sysconfig to avoid overwriting of customer's
configuration during update (bsc#1067720)
-------------------------------------------------------------------
Wed Jul 11 13:19:21 UTC 2018 - malbu@suse.com
- Add Obsoletes for tomcat6 packages (bsc#1095472)
-------------------------------------------------------------------
Sun Mar 12 21:53:09 UTC 2018 - malbu@suse.de
- Version update to 8.0.50:
* Another bugfix release, for full details see:
http://tomcat.apache.org/tomcat-8.0-doc/changelog.html
* Fixed CVEs:
- CVE-2018-1305 (bnc#1082481)
- CVE-2018-1304 (bnc#1082480)
- CVE-2017-15706 (bnc#1078677)
- Rebased patches:
* tomcat-8.0.9-property-build.windows.patch
* tomcat-8.0-sle.catalina.policy
- Removed patches:
* tomcat-8.0.43-CVE-2017-12617.patch
* tomcat-8.0.43-CVE-2017-5664.patch
* tomcat-8.0.43-CVE-2017-7674.patch
-------------------------------------------------------------------
Tue Oct 24 10:07:04 UTC 2017 - malbu@suse.com
- Patched CVEs:
- CVE-2017-7674 (bsc#1053352)
- CVE-2017-12617 (bsc#1059554)
-------------------------------------------------------------------
Tue Oct 17 12:53:36 UTC 2017 - malbu@suse.de
- Patched CVE-2017-5664 (bsc#1042910). Added patch:
* tomcat-8.0.43-CVE-2017-5664.patch
- Fix tomcat-digest classpath error (bsc#977410)
- Fix packaged /etc/alternatives symlinks for api libs that caused
rpm -V to report link mismatch (bsc#1019016)
-------------------------------------------------------------------
Tue Jul 4 13:24:21 UTC 2017 - vcizek@suse.com
- Remove obsolete Requires(post): jakarta-commons-pool-tomcat5
(bsc#1047015)
-------------------------------------------------------------------
Wed Jun 28 20:50:46 UTC 2017 - malbu@suse.com
- Changed the javax.sql.DataSource.Factory in /etc/tomcat/tomcat.conf
from dbcp 1.x to dbcp 2.x (bsc#1044256)
- Added commons-logging symlink in CATALINA_HOME/lib to avoid
ClassNotFoundException when using a JNDI datasource
(bsc#1044256)
-------------------------------------------------------------------
Thu May 4 16:46:45 UTC 2017 - malbu@suse.com
- Version update to 8.0.43:
* Another bugfix release, for full details see:
http://tomcat.apache.org/tomcat-8.0-doc/changelog.html
* Fixed CVEs:
- CVE-2017-5647 (bnc#1033448)
- CVE-2017-5648 (bnc#1033447)
- CVE-2016-8745
- Renamed and rebased patches:
* tomcat-7.0-sle.catalina.policy.patch -> tomcat-8.0-sle.catalina.policy.patch
- Rebased patches:
* tomcat-8.0-tomcat-users-webapp.patch
- Removed patches:
* tomcat-8.0.36-CVE-2016-0762.patch
* tomcat-8.0.36-CVE-2016-5018.patch
* tomcat-8.0.36-CVE-2016-6794.patch
* tomcat-8.0.36-CVE-2016-6796.patch
* tomcat-8.0.36-CVE-2016-6797.patch
* tomcat-8.0.36-CVE-2016-6816.patch
* tomcat-8.0.36-CVE-2016-8735.patch
* tomcat-8.0.36-jar-scanner-loop.patch
* tomcat-8.0.32-bug60101.patch
- Updated keyring file
-------------------------------------------------------------------
Fri Feb 10 15:50:32 UTC 2017 - malbu@suse.de
- Fix file conflicts when upgrading from SLES 12 to
SLES 12 SP1 (bnc#1023412)
- Fix jasper init failure with SecurityManager (bnc#1022034).
Upstream bug https://bz.apache.org/bugzilla/show_bug.cgi?id=60101
* tomcat-8.0.32-bug60101.patch
-------------------------------------------------------------------
Tue Nov 22 15:26:06 UTC 2016 - meissner@suse.com
- use apache-commons-dbcp 2.0 instead of the old jakarta-commons-dbcp 1.2
(fate#321029 bsc#1010893)
-------------------------------------------------------------------
Tue Nov 22 14:30:21 UTC 2016 - malbu@suse.com
- Patched CVEs:
- CVE-2016-0762 (bnc#1007854)
- CVE-2016-5018 (bnc#1007855)
- CVE-2016-6794 (bnc#1007857)
- CVE-2016-6796 (bnc#1007858)
- CVE-2016-6797 (bnc#1007853)
- CVE-2016-8735 (bnc#1011805)
- CVE-2016-6816 (bnc#1011812)
-------------------------------------------------------------------
Mon Oct 24 08:21:13 UTC 2016 - malbu@suse.com
- Enable optional setenv.sh script. See section
"(3.4) Using the "setenv" script (optional, recommended)" in
http://tomcat.apache.org/tomcat-8.0-doc/RUNNING.txt
(bnc#1002639)
-------------------------------------------------------------------
Fri Sep 2 13:20:00 UTC 2016 - malbu@suse.com
- Backport fix for inifinite loop in the jar scanner for 8.0.36. (bnc#993862)
Added: tomcat-8.0.36-jar-scanner-loop.patch
-------------------------------------------------------------------
Wed Jul 6 12:20:03 UTC 2016 - malbu@suse.com
- Version update to 8.0.36:
* Another bugfix release for the 8.0 series. Full details:
http://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.36_(markt)
- CVE fixed by the version update:
- CVE-2016-3092 (bnc#986359)
- Fixed a deployment error in the examples webapp by changing the context.xml format to the new one
introduced by Tomcat 8. See http://tomcat.apache.org/migration-8.html#Web_application_resources
-------------------------------------------------------------------
Mon May 2 16:05:26 UTC 2016 - dmacvicar@suse.de
- fix maven fragments paths to build in multiple distribution
versions
-------------------------------------------------------------------
Thu Apr 21 21:22:56 UTC 2016 - jcnengel@gmail.com
- Version update to 8.0.33:
* Another bugfix release for 8.0 series, full details:
http://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.33_(markt)
- Rebase tomcat-8.0-tomcat-users-webapp.patch
- Rebase tomcat-7.0.53-JDTCompiler-java.patch
to tomcat-8.0.33-JDTCompiler-java.patch
-------------------------------------------------------------------
Thu Apr 7 13:01:07 UTC 2016 - tchvatal@suse.com
- Fix fixme for the prereq preamble value
- It seems systemd prints error on adding the @ services to macros
so do not do that
-------------------------------------------------------------------
Thu Mar 31 08:18:39 UTC 2016 - dmacvicar@suse.de
- package was partly merged with the scripts used in the
Fedora distribution
- support running multiple tomcat instances on the same server
(fate#317783)
- add catalina-jmx-remote.jar (fate#318403)
- remove sysvinit support: systemd is required
-------------------------------------------------------------------
Mon Feb 29 12:45:46 UTC 2016 - dmacvicar@suse.de
- update changes file for CVE information
- Fixed CVEs:
- CVE-2015-5346 (bnc#967814) in 8.0.32
- CVE-2015-5351 (bnc#967812) in 8.0.32
- CVE-2016-0706 (bnc#967815) in 8.0.32
- CVE-2016-0714 (bnc#967964) in 8.0.32
- CVE-2016-0763 (bnc#967966) in 8.0.32
- CVE-2015-5345 (bnc#967965) in 8.0.30
- CVE-2015-5174 (bnc#967967) in 8.0.27
-------------------------------------------------------------------
Wed Feb 17 18:12:57 UTC 2016 - tchvatal@suse.com
- Version update to 8.0.32:
* Another bugfix release for 8.0 series, full details:
http://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.32_(markt)
- Rebase patch:
* tomcat-8.0.9-property-build.windows.patch
-------------------------------------------------------------------
Tue Nov 10 09:20:40 UTC 2015 - dmacvicar@suse.de
- update to Tomcat 8.0.28
* Multiple fixes, read upstream changelog at:
https://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.28_(markt)
-------------------------------------------------------------------
Mon Jun 1 09:08:36 UTC 2015 - tchvatal@suse.com
- Some whitespace cleanups
-------------------------------------------------------------------
Mon Jun 1 09:07:45 UTC 2015 - tchvatal@suse.com
- Remove pointless conflicts on provide/obsolete symbols
-------------------------------------------------------------------
Mon Jun 1 08:54:33 UTC 2015 - tchvatal@suse.com
- Version bump to 8.0.23 fate#318913:
* Multiple testfixes all around, read upstream changelog at:
http://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.23_(markt)
-------------------------------------------------------------------
Tue Mar 24 08:06:33 UTC 2015 - tchvatal@suse.com
- Fix previous commit. Fix one rpmlint warning
-------------------------------------------------------------------
Wed Mar 18 10:22:27 UTC 2015 - tchvatal@suse.com
- Drop gpg verification from spec, it is done by obs
-------------------------------------------------------------------
Wed Mar 18 10:16:07 UTC 2015 - tchvatal@suse.com
- Fix build with new jpackage-tools
-------------------------------------------------------------------
Tue Feb 10 10:12:38 UTC 2015 - wittemar@googlemail.com
- update to Tomcat 8.0.18:
* Major update for tomcat8 from tomcat7
* For full changelog please read upstream changes at:
+ http://tomcat.apache.org/tomcat-8.0-doc/changelog.html
* Rename all tomcat-7.0-* files to tomcat-8.0-*
* Update keyring file
- Update windows patch to apply again:
* Deleted: tomcat-7.0.52-property-build.windows.patch
* Added: tomcat-8.0.9-property-build.windows.patch
* Added:tomcat-8.0-tomcat-users-webapp.patch
* Deleted: tomcat-7.0-tomcat-users-webapp.patch
* Added: tomcat-8.0-bootstrap-MANIFEST.MF.patch
* Deleted: tomcat-7.0-bootstrap-MANIFEST.MF.patch
-------------------------------------------------------------------
Tue Feb 3 14:05:08 UTC 2015 - bmaryniuk@suse.com
- Version 1.1.30 or higher is required for APR listener (bnc#914725)
-------------------------------------------------------------------
Wed Sep 17 11:28:46 UTC 2014 - bmaryniuk@suse.com
- SLE12 has different path for the "rm" command than older versions.
To avoid possible clashes, the entire coreutils must be provided.
(bnc#894292)
-------------------------------------------------------------------
Tue Sep 16 16:09:59 UTC 2014 - bmaryniuk@suse.com
- Fixed Security Manager policies, which makes unable properly
run webapps by default. (bnc#891264)
Added: tomcat-7.0-sle.catalina.policy.patch
-------------------------------------------------------------------
Tue Sep 16 14:13:20 UTC 2014 - bmaryniuk@suse.com
- Missing security manager policy file prevents Tomcat to start
with systemd. (bnc#890995)
-------------------------------------------------------------------
Mon Sep 15 13:02:02 UTC 2014 - dmacvicar@suse.de
- Tomcat 7.0.55 requires ecj 4.4.0
-------------------------------------------------------------------
Mon Sep 8 09:01:13 UTC 2014 - dmacvicar@suse.de
- include the tomcat websocket implementation (tomcat7-websocket)
-------------------------------------------------------------------
Mon Sep 8 08:23:28 UTC 2014 - dmacvicar@suse.de
- Update to 7.0.55
* Update to the Eclipse JDT Compiler 4.4
* Better error handling when the error occurs after the response
has been committed
* Various improvements to the Mapper including fixing some
concurrency bugs
* See http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
-------------------------------------------------------------------
Mon Sep 8 07:44:28 UTC 2014 - dmacvicar@suse.de
- build tomcat-embed as a subpackage
-------------------------------------------------------------------
Wed Sep 3 14:43:12 UTC 2014 - tchvatal@suse.com
- Drop two unused defines
-------------------------------------------------------------------
Wed Sep 3 10:47:16 UTC 2014 - dmacvicar@suse.de
- touch the alternatives files to avoid build errors
in older versions
-------------------------------------------------------------------
Tue Jul 29 11:25:14 UTC 2014 - tchvatal@suse.com
- Do not define default defattr as it is pointless.
-------------------------------------------------------------------
Fri Jul 25 09:24:12 UTC 2014 - tchvatal@suse.com
- One file here was not supposed to be ghost.
-------------------------------------------------------------------
Sat Jul 19 09:35:11 UTC 2014 - tchvatal@suse.com
- Fix once more the alternatives.
-------------------------------------------------------------------
Fri Jul 11 14:16:47 UTC 2014 - tchvatal@suse.com
- Add path to rm command.
-------------------------------------------------------------------
Fri Jul 11 09:18:07 UTC 2014 - tchvatal@suse.com
- Silence loads of warnings by rpmlintrc
-------------------------------------------------------------------
Thu Jul 10 14:57:29 UTC 2014 - tchvatal@suse.com
- Cleanup with spec-cleaner and format few things a bit.
-------------------------------------------------------------------
Thu Jul 10 14:47:30 UTC 2014 - tchvatal@suse.com
- Remove few deps not really needed for sle11.
-------------------------------------------------------------------
Thu Jul 10 14:42:03 UTC 2014 - tchvatal@suse.com
- Drop unused files obs.bl and local.lb
- Drop unused collections-tomcat-build.xml
-------------------------------------------------------------------
Sat May 24 09:58:55 UTC 2014 - tchvatal@suse.com
- Version bump to 7.0.54:
* bugfix update
* See http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
-------------------------------------------------------------------
Thu May 15 14:59:25 UTC 2014 - darin@darins.net
- Update to 7.0.53
* bugfix release
* Update the Eclipse JDT compiler to enable full Java 8 support in JSPs.
* See http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
- Patch for Bug 56373
* See https://issues.apache.org/bugzilla/show_bug.cgi?id=56373
* tomcat-7.0.53-JDTCompiler-java.patch
- Rename tomcat-7.0.2-property-build.windows.patch to
tomcat-7.0.52-property-build.windows.patch
-------------------------------------------------------------------
Thu May 15 14:41:40 UTC 2014 - darin@darins.net
- remove saxon build requirement for sles
- disable bytecode check for sles
-------------------------------------------------------------------
Mon Apr 14 17:59:07 UTC 2014 - darin@darins.net
- remove unknown option from fillup_only macro
- wrap systemd %pre[un]/%post[un] in conditional
- specify required ant version
-------------------------------------------------------------------
Tue Apr 8 17:27:09 UTC 2014 - wittemar@googlemail.com
- Update to 7.0.52
* bugfix release
* Fix CVE-2014-0050, a DoS vulnerability related to multi-part processing
- Update to 7.0.50
* bugfix release
-------------------------------------------------------------------
Thu Dec 12 10:14:47 UTC 2013 - mvyskocil@suse.com
- Add missing commons-pool-tomcat5 symlink (bnc#847505c#13)
-------------------------------------------------------------------
Mon Nov 4 14:12:40 UTC 2013 - mvyskocil@suse.com
- Update to 7.0.47
* bugfix release
* backport of JSR-356 Java WebSocket 1.0
* package tomcat now requires java7 at lease
- Updated tomcat.keyring to reflect the fact new release is signed by
Violeta Georgieva / D63011C7
see http://osdir.com/ml/dev-tomcat.apache.org/2013-10/msg00849.html
- Add tomcat-dbcp.jar (bnc#847505) back into tomcat lib dir
- Install tomcat-coyote.jar as well
- Remove pointless scriplets
-------------------------------------------------------------------
Mon Sep 9 11:06:25 UTC 2013 - tchvatal@suse.com
- Move from jpackage-utils to javapackage-tools
-------------------------------------------------------------------
Thu Sep 5 13:59:28 UTC 2013 - mvyskocil@suse.com
- drop a dependency on unecessary -tomcat5 packages
- use commons-dbcp.jar for build
- add missing commons-pool.jar to libdir
-------------------------------------------------------------------
Fri Aug 9 09:18:44 UTC 2013 - mvyskocil@suse.com
- add _constraints to not schedule build on some build machines
workaround for bnc#832762
-------------------------------------------------------------------
Tue Aug 6 20:24:06 UTC 2013 - robert.munteanu@gmail.com
- Add missing 'su root tomcat' line to logrotate. See also
https://bugzilla.redhat.com/show_bug.cgi?id=790334
-------------------------------------------------------------------
Fri Jul 26 13:06:35 UTC 2013 - mvyskocil@suse.com
- call chown --no-dereference in init script
(bnc#822177#c7/prevents CVE-2013-1976)
-------------------------------------------------------------------
Tue Jul 23 14:33:47 UTC 2013 - mvyskocil@suse.com
- update to 7.0.42 (bugfix release)
see http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
- fix file list to be compatible for new rpm
-------------------------------------------------------------------
Thu Apr 18 12:23:13 UTC 2013 - mvyskocil@suse.com
- update to 7.0.39 (bugfix release)
- install only systemd unit files on openSUSE 12.1+
* and call proper code when init script still exists
- add a proper scripplets for -jsvc subpackage
- don't use catalina.out, systemd redirects stderr/stdout to syslog
- don't use and recommends logrotate
- package /etc/ant.d properly, mark only catalina-ant as a config file
-------------------------------------------------------------------
Sat Feb 16 07:29:52 UTC 2013 - m407@mail.ru
- Fix tomcat init scripts generating malformed classpath
(http://youtrack.jetbrains.com/issue/JT-18545)
bnc#804992
-------------------------------------------------------------------
Mon Jan 21 13:54:18 UTC 2013 - mvyskocil@suse.com
- update to 7.0.35 (bugfix release)
require ecj >= 4.2.1, like upstream do
- make gpg-offline work distros after 12.2
-------------------------------------------------------------------
Thu Dec 27 17:14:55 UTC 2012 - archie@dellroad.org
- Ensure tomcat stdout/stderr output ends up in catalina.out
-------------------------------------------------------------------
Thu Dec 20 22:45:19 UTC 2012 - archie@dellroad.org
- Recommend libtcnative-1-0 >= 1.1.24
- /etc/init.d/tomcate init script fixes:
* Include /usr/bin and /usr/sbin in the PATH
* Fix logic for cleaning the work directories
* Fix typo (log_success_msg lsb function name)
* Fix typo (reload message)
- Require log4j
-------------------------------------------------------------------
Tue Dec 18 09:34:29 UTC 2012 - mvyskocil@suse.com
- Require gpg-offline on 12.2+
-------------------------------------------------------------------
Thu Nov 29 19:17:03 CET 2012 - sbrabec@suse.cz
- Verify GPG signature.
-------------------------------------------------------------------
Mon Nov 26 13:01:44 UTC 2012 - mvyskocil@suse.com
- update to 7.0.33 (bugfix release)
-------------------------------------------------------------------
Tue Sep 11 08:24:53 UTC 2012 - mvyskocil@suse.cz
- update to 7.0.30 (bugfix release)
* SSI and CGI disabled by default
- fix bnc#779538: change the working dir to $CATALINA_BASE
- document the CATALINA_BASE and CATALINA_HOME in tomcat.conf better
- fix rpmlintrc file
-------------------------------------------------------------------
Thu Jul 19 08:48:31 UTC 2012 - mvyskocil@suse.cz
- fix bnc#771802 - systemd support is broken
* change type froking to simple as it does not make a sense run java in a
background to emulate that
* remove the need of nested wrappers, so /usr/sbin/tomcat-sysd now relies on
systemd features like User/EnvironmentFile
* workaround the 143 exit code in Stop phase - return 0 in this case
* merge the jsvc into tomcat-sysd code, the -jsvc-sysd is a symlink
* properly use jsvc with pid file to start and stop
-------------------------------------------------------------------
Wed Jun 13 12:37:49 UTC 2012 - mvyskocil@suse.cz
- update to 7.0.26 (bugfix release)
- rename package to tomcat in order to emphasise a fact, there is only one
major release of tomcat maintained in distribution
- add manifest files and systemd support (thanks Fedora)
- create tomcat-jsvc package
-------------------------------------------------------------------
Thu Feb 23 13:59:10 UTC 2012 - mvyskocil@suse.cz
- update to 7.0.26 (bugfix release)
- fix bnc#747771 - don't use /var/lock/subsys
sync tomcat7 init with tomcat6
-------------------------------------------------------------------
Sun Feb 19 23:02:42 UTC 2012 - wittemar@googlemail.com
- update to 7.0.25 (bugfix release)
-------------------------------------------------------------------
Tue Nov 1 12:36:57 UTC 2011 - mvyskocil@suse.cz
- update to 7.0.22 (bugfix release)
- wrote changes and prepare for inclusion to openSUSE distribution
- fix bnc#726307
/etc/tomcat7 is writtable for tomcat group
-------------------------------------------------------------------
Mon Sep 19 10:21:29 UTC 2011 - wittemar@googlemail.com
- update to version 7.0.21
-------------------------------------------------------------------
Thu Jul 21 10:21:29 UTC 2011 - mvyskocil@suse.cz
- update to version 7.0.16 (bugfix update)
-------------------------------------------------------------------
Wed Mar 30 16:29:28 UTC 2011 - jrenner@suse.de
- add rpmlintrc, digest, init and wrapper scripts and config file
- build require geronimo apis and wsdl4j
- disable webservices in javadoc target
-------------------------------------------------------------------
Tue Jan 18 12:22:55 UTC 2011 - mvyskocil@suse.cz
- initial packaging of tomcat7 7.0.6
