- Issued:
- 2015-07-22
- Updated:
- 2015-07-22
RHBA-2015:1316 - Bug Fix Advisory
Synopsis
tomcatjss bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An updated tomcatjss package that fixes one bug and adds one enhancement is now
available for Red Hat Enterprise Linux 6.
Description
The tomcatjss package provides a Java Secure Socket Extension (JSSE)
implementation using Java Security Services (JSS) for Tomcat, an open source web
server and Java servlet container.
This update fixes the following bug:
- Previously, the init() function in tomcatjss looked for the clientauth
attribute which was not present. As a consequence, Tomcat returned
NullPointerException in init() on startup, and in addition, some properties,
such as enableOSCP and properties for enabling certain SSL ciphers, were not
called. A patch has been applied to fix this problem. As a result,
NullPointerException no longer occurs in the described situation, and the
mentioned properties are called as expected. (BZ#1190911)
In addition, this update adds the following enhancement:
- The Tomcat service has been updated to support the Transport Layer Security
cryptographic protocol version 1.1 (TLSv1.1) and the Transport Layer Security
cryptographic protocol version 1.2 (TLSv1.2) using JSS. (BZ#1167471)
Users of tomcatjss are advised to upgrade to this updated package, which fixes
this bug and adds this enhancement.
Solution
Before applying this update, make sure all previously released errata relevant
to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux Desktop 6 x86_64
- Red Hat Enterprise Linux Desktop 6 i386
- Red Hat Enterprise Linux for Scientific Computing 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 i386
Fixes
- BZ - 1167471 - [RFE] Provide Tomcat support for TLS v1.1 and TLS v1.2 (Tomcatjss)
- BZ - 1190911 - NullPointerException in tomcatjss searching for attribute "clientauth"
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 6
| SRPM | |
|---|---|
| tomcatjss-2.1.0-4.el6.src.rpm | SHA-256: 2081a17caa929a325734b2bf58e37130061f0398b62b359aa417841cd957e0ef |
| x86_64 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
| i386 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6
| SRPM | |
|---|---|
| tomcatjss-2.1.0-4.el6.src.rpm | SHA-256: 2081a17caa929a325734b2bf58e37130061f0398b62b359aa417841cd957e0ef |
| i386 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
| x86_64 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
Red Hat Enterprise Linux Workstation 6
| SRPM | |
|---|---|
| tomcatjss-2.1.0-4.el6.src.rpm | SHA-256: 2081a17caa929a325734b2bf58e37130061f0398b62b359aa417841cd957e0ef |
| x86_64 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
| i386 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
Red Hat Enterprise Linux Desktop 6
| SRPM | |
|---|---|
| tomcatjss-2.1.0-4.el6.src.rpm | SHA-256: 2081a17caa929a325734b2bf58e37130061f0398b62b359aa417841cd957e0ef |
| x86_64 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
| i386 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
Red Hat Enterprise Linux for Scientific Computing 6
| SRPM | |
|---|---|
| tomcatjss-2.1.0-4.el6.src.rpm | SHA-256: 2081a17caa929a325734b2bf58e37130061f0398b62b359aa417841cd957e0ef |
| x86_64 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
Red Hat Enterprise Linux Server from RHUI 6
| SRPM | |
|---|---|
| tomcatjss-2.1.0-4.el6.src.rpm | SHA-256: 2081a17caa929a325734b2bf58e37130061f0398b62b359aa417841cd957e0ef |
| x86_64 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
| i386 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6
| SRPM | |
|---|---|
| tomcatjss-2.1.0-4.el6.src.rpm | SHA-256: 2081a17caa929a325734b2bf58e37130061f0398b62b359aa417841cd957e0ef |
| x86_64 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
| i386 | |
| tomcatjss-2.1.0-4.el6.noarch.rpm | SHA-256: 7f65cfcf3f48bac18c456747300b4b1d7df5d56b34e6eb87b5b14b570e8b9907 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
