---------------------------------------------------------------------- Want a new job? http://secunia.com/secunia_security_specialist/ http://secunia.com/hardcore_disassembler_and_reverse_engineer/ International Partner Manager - Project Sales in the IT-Security Industry: http://corporate.secunia.com/about_secunia/64/ ---------------------------------------------------------------------- TITLE: Debian update for tomcat5.5 SECUNIA ADVISORY ID: SA30592 VERIFY ADVISORY: http://secunia.com/advisories/30592/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: >From remote OPERATING SYSTEM: Debian GNU/Linux 4.0 http://secunia.com/product/13844/ Debian GNU/Linux unstable alias sid http://secunia.com/product/530/ DESCRIPTION: Debian has issued an update for tomcat5.5. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks. For more information: SA30500 SOLUTION: Apply updated packages. -- Debian GNU/Linux 4.0 alias etch -- Source archives: http://security.debian.org/pool/updates/main/t/tomcat5.5/tomcat5.5_5.5.20-2etch3.dsc Size/MD5 checksum: 1277 119f28678cab927a6be1cd1e6622cb70 http://security.debian.org/pool/updates/main/t/tomcat5.5/tomcat5.5_5.5.20.orig.tar.gz Size/MD5 checksum: 4796377 5775bae8fac16a0e3a2c913c4768bb37 http://security.debian.org/pool/updates/main/t/tomcat5.5/tomcat5.5_5.5.20-2etch3.diff.gz Size/MD5 checksum: 29340 1018b80cfeeea2d4f68507be5cdee483 Architecture independent packages: http://security.debian.org/pool/updates/main/t/tomcat5.5/tomcat5.5-admin_5.5.20-2etch3_all.deb Size/MD5 checksum: 1161468 170d5eb777223389eed37a8491825b42 http://security.debian.org/pool/updates/main/t/tomcat5.5/libtomcat5.5-java_5.5.20-2etch3_all.deb Size/MD5 checksum: 2385122 70ce8a752564f7cf074775d2619fe5ee http://security.debian.org/pool/updates/main/t/tomcat5.5/tomcat5.5-webapps_5.5.20-2etch3_all.deb Size/MD5 checksum: 1459186 1bdcdab47fcbe02f0ac9b20460f777c8 http://security.debian.org/pool/updates/main/t/tomcat5.5/tomcat5.5_5.5.20-2etch3_all.deb Size/MD5 checksum: 56958 89f2145bc6065b94faa74a0587cc908b -- Debian GNU/Linux unstable alias sid -- Fixed in version 5.5.26-3. ORIGINAL ADVISORY: http://lists.debian.org/debian-security-announce/2008/msg00174.html OTHER REFERENCES: SA30500: http://secunia.com/advisories/30500/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------