tomcat5 security update

2013-03-12T00:00:00
ID ELSA-2013-0640
Type oraclelinux
Reporter Oracle
Modified 2013-03-12T00:00:00

Description

[0:5.5.23-0jpp.38] - Resolves: CVE-2012-3439 rhbz#882008 three DIGEST authentication - implementation - Resolves: CVE-2012-3546, rhbz#913034 Bypass of security constraints. - Remove unneeded handling of FORM authentication in RealmBase