Red Hat Customer Portal

Skip to main content

Bug Fix Advisory Red Hat JBoss Web Server 2.1.0 tomcat7 update

Advisory: RHBA-2016:0090-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2016-01-29
Last updated on: 2016-01-29
Affected Products: JBoss Enterprise Web Server v2 EL5
JBoss Enterprise Web Server v2 EL6
CVEs (cve.mitre.org): CVE-2015-5174

Details

An update for the Apache Tomcat 7 component for Red Hat JBoss Web Server
2.1.0 is now available from the Red Hat Customer Portal for Red Hat Enterprise
Linux 5 and 7

Red Hat JBoss Web Server is a fully integrated and certified set of
components for hosting Java web applications. It is comprised of the Apache
HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector
(mod_jk), JBoss HTTP Connector (mod_cluster), Hibernate, and the Tomcat
Native library.

All users of Red Hat JBoss Web Server 2.1.0 as provided from the Red Hat
Customer Portal are advised to apply this update. The Red Hat JBoss Web
Server process must be restarted for the update to take effect.


Solution

Before applying this update, make sure all previously released errata relevant
to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red
Hat Network to apply this update are available at
https://access.redhat.com/articles/11258

Updated packages

JBoss Enterprise Web Server v2 EL5

SRPMS:
tomcat7-7.0.54-21_patch_05.ep6.el5.src.rpm     MD5: c74efd02d1d2bb1a3fce4665fb6c53b9
SHA-256: b7fdafbeb8d0c12d1f369fd2fcc591627d6888177152634920319fc6cd0c228d
 
IA-32:
tomcat7-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 784bdb9b97d0e675d4204a0ae71e4cfb
SHA-256: ccb8bc85ef267e93e1c36b4be21c8a39a2866e2287ceb2668a09ada6505ec1ef
tomcat7-admin-webapps-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 1e7f8b7bccc179cca636a59e1546b791
SHA-256: cfd1a9d68b3a360f420ff73398a02bd71819104ff6a9bb82eb83ce42999064f6
tomcat7-docs-webapp-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: e5f5d22984edde31daceb3d13bdcd38b
SHA-256: 5286deaf1419995974c5d372c136bf65f8c1e5652b8d09b8d9f0af7a6ce2931c
tomcat7-el-2.2-api-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: ab1a50a0136ea52eed614eaf9a66e055
SHA-256: 8da66096b176bab2206b7319a278c61cec0c6712715040890a262a815dc3a486
tomcat7-javadoc-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 9885007fedfb64530708bde440dd92dc
SHA-256: 30013436a443c78ec0f0806381e92d52ba9ef908b0265cf7b4b5ecc7900a02c0
tomcat7-jsp-2.2-api-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 230b8bb849acc01dc31d08400118c8fa
SHA-256: e08767126cab0d7eb3ad4d5525acecc5bb79f2e55ca10235be09cb11eadfb5ca
tomcat7-lib-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 646a62de79372151e3ba27b371af213f
SHA-256: f37e7210194629aa85db683a00f25234d3227bfefd9d3c8e4bc8bcf9a96a9bf7
tomcat7-log4j-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 2ef37c2d958486f95a728a904650797d
SHA-256: 73dd751612d25bd8de7d961e23ac2a6704241bb2b763880a439f99e435ecf639
tomcat7-maven-devel-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 630469e7bc65deb1670866582b3727a8
SHA-256: e7f92c96641761cfcc0b86ea71ddee1f7305d44dc791867288980f4ec0ea266a
tomcat7-servlet-3.0-api-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 00672132310f301ee0b3a7e850fc3a62
SHA-256: cd1715a6e790f91460e9aa372180823db94ff95fc029434989a8e078e72a2136
tomcat7-webapps-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: bdc8da1e02c0eb9702d2db73dc5b1dcc
SHA-256: 34491b63e47e5e2beef3d51910668f0187e7407bf4d431e88cffab02e72cc52b
 
x86_64:
tomcat7-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 784bdb9b97d0e675d4204a0ae71e4cfb
SHA-256: ccb8bc85ef267e93e1c36b4be21c8a39a2866e2287ceb2668a09ada6505ec1ef
tomcat7-admin-webapps-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 1e7f8b7bccc179cca636a59e1546b791
SHA-256: cfd1a9d68b3a360f420ff73398a02bd71819104ff6a9bb82eb83ce42999064f6
tomcat7-docs-webapp-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: e5f5d22984edde31daceb3d13bdcd38b
SHA-256: 5286deaf1419995974c5d372c136bf65f8c1e5652b8d09b8d9f0af7a6ce2931c
tomcat7-el-2.2-api-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: ab1a50a0136ea52eed614eaf9a66e055
SHA-256: 8da66096b176bab2206b7319a278c61cec0c6712715040890a262a815dc3a486
tomcat7-javadoc-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 9885007fedfb64530708bde440dd92dc
SHA-256: 30013436a443c78ec0f0806381e92d52ba9ef908b0265cf7b4b5ecc7900a02c0
tomcat7-jsp-2.2-api-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 230b8bb849acc01dc31d08400118c8fa
SHA-256: e08767126cab0d7eb3ad4d5525acecc5bb79f2e55ca10235be09cb11eadfb5ca
tomcat7-lib-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 646a62de79372151e3ba27b371af213f
SHA-256: f37e7210194629aa85db683a00f25234d3227bfefd9d3c8e4bc8bcf9a96a9bf7
tomcat7-log4j-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 2ef37c2d958486f95a728a904650797d
SHA-256: 73dd751612d25bd8de7d961e23ac2a6704241bb2b763880a439f99e435ecf639
tomcat7-maven-devel-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 630469e7bc65deb1670866582b3727a8
SHA-256: e7f92c96641761cfcc0b86ea71ddee1f7305d44dc791867288980f4ec0ea266a
tomcat7-servlet-3.0-api-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: 00672132310f301ee0b3a7e850fc3a62
SHA-256: cd1715a6e790f91460e9aa372180823db94ff95fc029434989a8e078e72a2136
tomcat7-webapps-7.0.54-21_patch_05.ep6.el5.noarch.rpm     MD5: bdc8da1e02c0eb9702d2db73dc5b1dcc
SHA-256: 34491b63e47e5e2beef3d51910668f0187e7407bf4d431e88cffab02e72cc52b
 
JBoss Enterprise Web Server v2 EL6

SRPMS:
tomcat7-7.0.54-21_patch_05.ep6.el6.src.rpm
File outdated by:  RHSA-2016:2807
    MD5: 5d06e4507fa1984ec3f751e6332c0dae
SHA-256: 2804cf3eba930030bd8eaa5be43be9209920c79fd3f09159afa26102307b7664
 
IA-32:
tomcat7-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 61a76699c01989d775b4ee97c45cdebc
SHA-256: 484d9b22814e483969a9eedc62c6c0bfa192b63bcee9b437815fc8e6429f8ecb
tomcat7-admin-webapps-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: c0d3af156fa6954cbe2c27607faed327
SHA-256: c524381ff345984e63d98d3641ec040a0183bf97d582315b1fc418eef18efc5a
tomcat7-docs-webapp-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 2b37c8ef3735dd7ef03cb25f8e723ade
SHA-256: 896456496f92b03907745329f37326284604631bd96e6870caf591f53263d8fa
tomcat7-el-2.2-api-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 861955bc0f92e71c3b92e1e471ab7400
SHA-256: 1437fa092ca0cd4b29857de44c2829ba5613708ded8db1ef5800b645367fcba7
tomcat7-javadoc-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 1c32f924a0210dae0968ca1faa4be308
SHA-256: 90daeb6979d17ef15ca18d62e38e5226f0e17504076ad75bd068e8a70f3112ab
tomcat7-jsp-2.2-api-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: b8753aad155ada89586bb6ad22e33c21
SHA-256: 351a47db969fcba676eef4f3d9ec7861467a03358b38816873560cd053d7b8ec
tomcat7-lib-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: d55e7323a003d2babd40769a1479350b
SHA-256: e13eb212518a4c0f7bcb085d84ee65a374d6453430fa5193f7bb990c2e3026db
tomcat7-log4j-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 4094b626409d4715ed44b0e973e51629
SHA-256: bd0e2c5efa28e24a3884f365f32683aec5b2e178a194fa7c33be84fd84edc645
tomcat7-maven-devel-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: d042fa4c0243270b5ccfc3e19511c50c
SHA-256: 331c2594f8852d10a16ceef2a2d725e317407ff7b3d5f75ccf38ac27057fe6a0
tomcat7-servlet-3.0-api-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 25d463aada0a992c9181a220cc322d6b
SHA-256: 15a3fd3a5e08a12c8951163f6a8495c1ac9dad6deb23e26f7d534f015fcb272f
tomcat7-webapps-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: e0a00e6219d3b9ce5aed2b2954fffe0d
SHA-256: 4b600b32395532caf2f1797d6f9dfd47a9822296cb97dc1f84fe37e6d623f30f
 
x86_64:
tomcat7-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 61a76699c01989d775b4ee97c45cdebc
SHA-256: 484d9b22814e483969a9eedc62c6c0bfa192b63bcee9b437815fc8e6429f8ecb
tomcat7-admin-webapps-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: c0d3af156fa6954cbe2c27607faed327
SHA-256: c524381ff345984e63d98d3641ec040a0183bf97d582315b1fc418eef18efc5a
tomcat7-docs-webapp-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 2b37c8ef3735dd7ef03cb25f8e723ade
SHA-256: 896456496f92b03907745329f37326284604631bd96e6870caf591f53263d8fa
tomcat7-el-2.2-api-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 861955bc0f92e71c3b92e1e471ab7400
SHA-256: 1437fa092ca0cd4b29857de44c2829ba5613708ded8db1ef5800b645367fcba7
tomcat7-javadoc-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 1c32f924a0210dae0968ca1faa4be308
SHA-256: 90daeb6979d17ef15ca18d62e38e5226f0e17504076ad75bd068e8a70f3112ab
tomcat7-jsp-2.2-api-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: b8753aad155ada89586bb6ad22e33c21
SHA-256: 351a47db969fcba676eef4f3d9ec7861467a03358b38816873560cd053d7b8ec
tomcat7-lib-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: d55e7323a003d2babd40769a1479350b
SHA-256: e13eb212518a4c0f7bcb085d84ee65a374d6453430fa5193f7bb990c2e3026db
tomcat7-log4j-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 4094b626409d4715ed44b0e973e51629
SHA-256: bd0e2c5efa28e24a3884f365f32683aec5b2e178a194fa7c33be84fd84edc645
tomcat7-maven-devel-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: d042fa4c0243270b5ccfc3e19511c50c
SHA-256: 331c2594f8852d10a16ceef2a2d725e317407ff7b3d5f75ccf38ac27057fe6a0
tomcat7-servlet-3.0-api-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: 25d463aada0a992c9181a220cc322d6b
SHA-256: 15a3fd3a5e08a12c8951163f6a8495c1ac9dad6deb23e26f7d534f015fcb272f
tomcat7-webapps-7.0.54-21_patch_05.ep6.el6.noarch.rpm
File outdated by:  RHSA-2016:2807
    MD5: e0a00e6219d3b9ce5aed2b2954fffe0d
SHA-256: 4b600b32395532caf2f1797d6f9dfd47a9822296cb97dc1f84fe37e6d623f30f
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1297687 - Multiple bug fixes to tomcat7


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/