https://bugzilla.redhat.com/show_bug.cgi?id=1693325
Joshua Mulliken jmullike@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |aboyko@redhat.com, | |pdrozd@redhat.com, | |sthorger@redhat.com
--- Comment #10 from Joshua Mulliken jmullike@redhat.com --- Adding RHSSO. A vulnerable version of tomcat-api was detected in a newly generated BOM:
{ "group": "org.apache.tomcat", "name": "tomcat-api", "version": "7.0.92", "description": "Definition of interfaces shared by Catalina and Jasper", "hashes": [ { "alg": "MD5", "content": "beeba9a893d8f9b1fb6030c85936d8f0" }, { "alg": "SHA-1", "content": "8be254a4fe5bbba7495a78f835053ce1e1846c54" }, { "alg": "SHA-256", "content": "d661c70a1719eba641925adac4994ad4dca0e2e43a9ea402b4ca4a9abf29d0f3" }, { "alg": "SHA-384", "content": "5e5fe33329bd24d715ff810874ae1f09014f25e7ecc5a9f105e72477c14a29e6d8d7f6b8b5a930eea7ebe9235232e048" }, { "alg": "SHA-512", "content": "293f3ddf3aa232d61cc7cd44594bd3457aebaafec00bab5414097ab318d79f6584c293a33944e036e582c952e0b60fc5a11681a6329913b9d3d04568763f459b" }, { "alg": "SHA3-256", "content": "7a29bdac2f51d7819594c72862c579b379c99dedf9ac2de492b4298a6a549230" }, { "alg": "SHA3-384", "content": "d354f751ad6627345fb60ee0f326904a356035c46f822b2d3809d8790b47cb275c445fad641b6835c0ab570d38323792" }, { "alg": "SHA3-512", "content": "4bdcb5a5bd7538382e4d8f2d8ba8be17786162b7afc16cdcac15817adc143eeeb02329584951eb05937907a1d6a5e4a52c9c329cdd37881e99a2fd08f666a7bc" } ], "licenses": [ { "license": { "id": "Apache-2.0" } } ], "purl": "pkg:maven/org.apache.tomcat/tomcat-api@7.0.92?type=jar", "type": "library", "bom-ref": "pkg:maven/org.apache.tomcat/tomcat-api@7.0.92?type=jar" }