---------------------------------------------------------------------- A new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI has been released. The new version includes many new and advanced features, which makes it even easier to stay patched. Download and test it today: https://psi.secunia.com/ Read more about this new version: https://psi.secunia.com/?page=changelog ---------------------------------------------------------------------- TITLE: Debian update for tomcat5 SECUNIA ADVISORY ID: SA28361 VERIFY ADVISORY: http://secunia.com/advisories/28361/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: >From remote OPERATING SYSTEM: Debian GNU/Linux 4.0 http://secunia.com/product/13844/ DESCRIPTION: Debian has issued an update for tomcat5. This fixes some vulnerabilities, which can be exploited by malicious people and malicious users to disclose sensitive information. For more information: SA26466 SA27398 SOLUTION: Apply updated packages. -- Debian 4.0 (stable) -- Source archives: http://security.debian.org/pool/updates/main/t/tomcat5/tomcat5_5.0.30-12etch1.diff.gz Size/MD5 checksum: 30232 4d49cb48fcbd1ffde3e1ab59751ea567 http://security.debian.org/pool/updates/main/t/tomcat5/tomcat5_5.0.30-12etch1.dsc Size/MD5 checksum: 1343 986018050a2272e753d5ef8db7994524 http://security.debian.org/pool/updates/main/t/tomcat5/tomcat5_5.0.30.orig.tar.gz Size/MD5 checksum: 3594081 0bf81a5293246aa509a3bfa1afeb3920 Architecture independent packages: http://security.debian.org/pool/updates/main/t/tomcat5/tomcat5_5.0.30-12etch1_all.deb Size/MD5 checksum: 45488 cb4b3ac3e28f621d70fa4a8098e8b1ac http://security.debian.org/pool/updates/main/t/tomcat5/libtomcat5-java_5.0.30-12etch1_all.deb Size/MD5 checksum: 3662182 f909205ef2d99e1343a2c54e06a40ba4 http://security.debian.org/pool/updates/main/t/tomcat5/tomcat5-admin_5.0.30-12etch1_all.deb Size/MD5 checksum: 402176 4811ece0563a742982ecd7ffe0cd44b1 http://security.debian.org/pool/updates/main/t/tomcat5/tomcat5-webapps_5.0.30-12etch1_all.deb Size/MD5 checksum: 1121936 14ed52052f9cc573fdf0648162370745 ORIGINAL ADVISORY: http://www.us.debian.org/security/2008/dsa-1453 OTHER REFERENCES: SA26466: http://secunia.com/advisories/26466/ SA27398: http://secunia.com/advisories/27398/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------