diff options
| author | VVD <vvd@unislabs.com> | 2022-04-01 10:44:42 +0000 |
|---|---|---|
| committer | Mikael Urankar <mikael@FreeBSD.org> | 2022-04-01 10:57:05 +0000 |
| commit | e9395fe9f8bf883705051291aabb7c7603ab41df (patch) | |
| tree | 906f6cca300b1608eab7b8e4960f9037e45028f6 | |
| parent | 8126f2d8db74bb034cd5f6950c7caf9f87eef054 (diff) | |
| download | ports-e9395fe9f8bf883705051291aabb7c7603ab41df.tar.gz ports-e9395fe9f8bf883705051291aabb7c7603ab41df.zip | |
www/tomcat9: Update to 9.0.62
Harden the class loader to provide a mitigation for CVE-2022-22965
a Spring Framework vulnerability: Effectively disable the
WebappClassLoaderBase.getResources() method as it is not used and
if something accidently exposes the class loader this method can be used to gain
access to Tomcat internals.
Changes: https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.62_(remm)
PR: 262975
| -rw-r--r-- | www/tomcat9/Makefile | 2 | ||||
| -rw-r--r-- | www/tomcat9/distinfo | 6 |
2 files changed, 4 insertions, 4 deletions
diff --git a/www/tomcat9/Makefile b/www/tomcat9/Makefile index 7d77b440731c..dcd154335159 100644 --- a/www/tomcat9/Makefile +++ b/www/tomcat9/Makefile @@ -1,7 +1,7 @@ # Created by: Alex Dupre <ale@FreeBSD.org> PORTNAME= tomcat -PORTVERSION= 9.0.60 +PORTVERSION= 9.0.62 CATEGORIES= www java MASTER_SITES= APACHE/${PORTNAME}/${PORTNAME}-${PORTVERSION:C/([0-9])(.*)/\1/}/v${PORTVERSION}/bin PKGNAMESUFFIX= 9 diff --git a/www/tomcat9/distinfo b/www/tomcat9/distinfo index f0b833257231..6909f72f74e6 100644 --- a/www/tomcat9/distinfo +++ b/www/tomcat9/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1647715316 -SHA256 (apache-tomcat-9.0.60.tar.gz) = 89c5b55c8629cebb3c802aeec61e54a8d225f995ed7cdc88421aeb310cb12ce0 -SIZE (apache-tomcat-9.0.60.tar.gz) = 11543791 +TIMESTAMP = 1648808195 +SHA256 (apache-tomcat-9.0.62.tar.gz) = 03157728a832cf9c83048cdc28d09600cbb3e4fa087f8b97d74c8b4f34cd89bb +SIZE (apache-tomcat-9.0.62.tar.gz) = 11560971 |