Ubuntu
tomcat9 package

  1. Bug #2047933
  2. Comment #3

Comment 3 for bug 2047933

Revision history for this message
Troels Arvin (troels-w) wrote :

OK, I've created a Tomcat 9 package set which has a fix for the CVE.

I didn't base it on the very latest Tomcat 9, because Java 17 has become a requirement for the very latest Tomcat 9 releases, somewhat surprisingly.

https://launchpad.net/~troels-w/+archive/ubuntu/tomcat-slipstream