| Revision Date: | 2016-02-26 | Version: | 2 | | Title: | DSA-3428-1 -- tomcat8 -- security update | | Description: | It was discovered that malicious web applications could use the Expression Language to bypass protections of a Security Manager as expressions were evaluated within a privileged code section. | | Family: | unix | Class: | patch | | Status: | ACCEPTED | Reference(s): | CVE-2014-7810
DSA-3428-1
| | Platform(s): | Debian 8
| Product(s): | tomcat8
| | Definition Synopsis | | Debian 8 is installed AND tomcat8 is earlier than 0:8.0.14-1+deb8u1
|
|