[Bug 1026741] New: tomcat should create and own %{_localstatedir}/lib/tomcats
by Red Hat Bugzilla
https://bugzilla.redhat.com/show_bug.cgi?id=1026741
Bug ID: 1026741
Summary: tomcat should create and own
%{_localstatedir}/lib/tomcats
Product: Fedora
Version: rawhide
Component: tomcat
Assignee: ivan.afonichev(a)gmail.com
Reporter: sgehwolf(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: akurtako(a)redhat.com, ivan.afonichev(a)gmail.com,
java-sig-commits(a)lists.fedoraproject.org,
kdaniel(a)redhat.com
Description of problem:
/usr/lib/systemd/system/tomcat@.service describes how to use tomcat with custom
CATALINA_BASE in /var/lib/tomcats/name. However, directory /var/lib/tomcats
does not exist.
Version-Release number of selected component (if applicable):
$ rpm -q tomcat
tomcat-7.0.47-1.fc21.noarch
How reproducible:
Always.
Steps to Reproduce:
1. yum install tomcat
2. ls /var/lib/tomcats
Actual results:
No such file or directory
Expected results:
Empty directory exists.
Additional info:
If custom tomcats start to own this directory chaos will occur if more than one
of those is installed. Getting file conflicts. Such custom tomcats should only
own /var/lib/tomcats/<name> NOT /var/lib/tomcats itself.
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=76v64CH8Na&a=cc_unsubscribe
9 years, 7 months
[Bug 1069925] New: CVE-2013-4322 tomcat: incomplete fix for CVE-2012-3544 [fedora-all]
by Red Hat Bugzilla
https://bugzilla.redhat.com/show_bug.cgi?id=1069925
Bug ID: 1069925
Summary: CVE-2013-4322 tomcat: incomplete fix for CVE-2012-3544
[fedora-all]
Product: Fedora
Version: 20
Component: tomcat
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: ivan.afonichev(a)gmail.com
Reporter: vdanen(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: ivan.afonichev(a)gmail.com,
java-sig-commits(a)lists.fedoraproject.org,
krzysztof.daniel(a)gmail.com
Blocks: 1069905 (CVE-2013-4322)
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
Please note: this issue affects multiple supported versions of Fedora.
Only one tracking bug has been filed; please ensure that it is only closed
when all affected versions are fixed.
[bug automatically created by: add-tracking-bugs]
Referenced Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=1069905
[Bug 1069905] CVE-2013-4322 tomcat: incomplete fix for CVE-2012-3544
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=TbLxcDol7X&a=cc_unsubscribe
9 years, 7 months
[Bug 1064673] New: CVE-2014-0050 tomcat: apache-commons-fileupload: denial of service due to too-small buffer size used bt MultipartStream [fedora-all]
by Red Hat Bugzilla
https://bugzilla.redhat.com/show_bug.cgi?id=1064673
Bug ID: 1064673
Summary: CVE-2014-0050 tomcat: apache-commons-fileupload:
denial of service due to too-small buffer size used bt
MultipartStream [fedora-all]
Product: Fedora
Version: 20
Component: tomcat
Keywords: Security, SecurityTracking
Severity: high
Priority: high
Assignee: ivan.afonichev(a)gmail.com
Reporter: aneelica(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: ivan.afonichev(a)gmail.com,
java-sig-commits(a)lists.fedoraproject.org,
krzysztof.daniel(a)gmail.com
Blocks: 1062337 (CVE-2014-0050)
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
Please note: this issue affects multiple supported versions of Fedora.
Only one tracking bug has been filed; please ensure that it is only closed
when all affected versions are fixed.
[bug automatically created by: add-tracking-bugs]
Referenced Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=1062337
[Bug 1062337] CVE-2014-0050 apache-commons-fileupload: denial of service
due to too-small buffer size used bt MultipartStream
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=DQuvl77ILU&a=cc_unsubscribe
9 years, 7 months
[Bug 789272] New: Tycho bundles parts of eclipse
by Red Hat Bugzilla
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug.
Summary: Tycho bundles parts of eclipse
https://bugzilla.redhat.com/show_bug.cgi?id=789272
Summary: Tycho bundles parts of eclipse
Product: Fedora
Version: rawhide
Platform: Unspecified
OS/Version: Unspecified
Status: NEW
Severity: unspecified
Priority: unspecified
Component: tycho
AssignedTo: sochotni(a)redhat.com
ReportedBy: akurtako(a)redhat.com
QAContact: extras-qa(a)fedoraproject.org
CC: sochotni(a)redhat.com,
java-sig-commits(a)lists.fedoraproject.org
Classification: Fedora
Story Points: ---
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Tycho ships /usr/share/java/tycho/tycho-p2-runtime.zip . This zip contains
equinox, sat4j, ecf and other parts of regular eclipse . Ideally it shouldn't
be needed but if this is too hard to achieve the zip should be replaced by
regular directory with symlinks in it or even zip with symlinks or tar.gz if
zip doesn't support symlinks.
--
Configure bugmail: https://bugzilla.redhat.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
9 years, 8 months
[Bug 1058572] New: Maven deploy ignores authentication
by Red Hat Bugzilla
https://bugzilla.redhat.com/show_bug.cgi?id=1058572
Bug ID: 1058572
Summary: Maven deploy ignores authentication
Product: Fedora
Version: 19
Component: maven
Severity: medium
Assignee: sochotni(a)redhat.com
Reporter: pille2003-reg(a)yahoo.de
QA Contact: extras-qa(a)fedoraproject.org
CC: akurtako(a)redhat.com,
java-sig-commits(a)lists.fedoraproject.org,
mizdebsk(a)redhat.com, msrb(a)redhat.com,
sochotni(a)redhat.com
Created attachment 856364
--> https://bugzilla.redhat.com/attachment.cgi?id=856364&action=edit
Maven deploy failure for provided version and success for version from Apache
Description of problem:
Trying to deploy a maven artifact with Fedora provided maven to nexus fails
with a 401, although login credentials match. Mvn deploy process works with
same maven version (3.0.5) downloaded from Apache or latest 3.1.1 from Apache.
It looks like this error is still in the package:
http://jira.codehaus.org/browse/MNG-3953 &
http://jira.codehaus.org/browse/MNG-4469
Further evidence to proof that the upload is tried to be done without
credentials is that the nexus log isn't showing anything for login attempts of
the given user.
Version-Release number of selected component (if applicable):
maven-3.0.5-3.fc19.noarch
How reproducible:
execute mvn deploy for maven project hosted on secured nexus, with
authentication credentials provided in settings.xml
Steps to Reproduce:
1. Add authentication credentials to ~/.m2/settings.xml file
2. change into mvn project hosted on secured nexus
3. run mvn deploy
Actual results:
Deploy fails with 401 error
Expected results:
Deploy succeeds and maven artifacts are available.
Additional info:
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=DzONhoPOvi&a=cc_unsubscribe
9 years, 9 months