Name: tomcat9-jsp-2.3-api	Distribution: AlmaLinux
Version: 9.0.87	Vendor: AlmaLinux
Release: 7.el10	Build date: Wed Aug 27 15:27:40 2025
Group: Unspecified	Build host: s390x-builder02.almalinux.org
Size: 148836	Source RPM: tomcat9-9.0.87-7.el10.src.rpm
Packager: AlmaLinux Packaging Team <packager@almalinux.org>
Url: http://tomcat.apache.org/
Summary: Apache Tomcat JavaServer Pages v2.3 API Implementation Classes

Apache Tomcat JSP API Implementation Classes.

Provides

Requires

/bin/sh
/bin/sh
javapackages-filesystem
mvn(org.apache.tomcat:tomcat-el-api) = 9.0.87
mvn(org.apache.tomcat:tomcat-servlet-api) = 9.0.87
rpmlib(CompressedFileNames) <= 3.0.4-1
rpmlib(FileDigests) <= 4.6.0-1
rpmlib(PayloadFilesHavePrefix) <= 4.0-1
rpmlib(PayloadIsZstd) <= 5.4.18-1
tomcat9-el-3.0-api = 1:9.0.87-7.el10
tomcat9-servlet-4.0-api = 1:9.0.87-7.el10

License

Apache-2.0

Changelog

* Wed Aug 13 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-7
  - Resolves: RHEL-108485
    tomcat: Apache Commons FileUpload DOS via part headers (CVE-2025-48976)
  - Resolves: RHEL-108493
    tomcat: Dos in multipart upload (CVE-2025-48988)
  - Resolves: RHEL-108501
    tomcat: Security constraint bypass for pre/post-resources (CVE-2025-49125)
  - Resolves: RHEL-108509
    tomcat: Denial of service (CVE-2025-52434)
  - Resolves: RHEL-108522
    tomcat: Denial of service (CVE-2025-52520)
  - Resolves: RHEL-108517
    tomcat: Denial of service (CVE-2025-53506)
* Mon May 26 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-5.el10_0.1
  - Resolves: RHEL-91750
    tomcat: DoS via malformed HTTP/2 PRIORITY_UPDATE frame (CVE-2025-31650)
  - Resolves: RHEL-94960
    tomcat: Incomplete fix for CVE-2024-50379 - RCE due to TOCTOU issue in JSP compilation (CVE-2024-56337)
* Mon Apr 14 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-5
  - Resolves: RHEL-82927
    tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT (CVE-2025-24813)
* Thu Feb 13 2025 Joe Orton <jorton@redhat.com> - 1:9.0.87-4
  - add Obsoletes to aid upgrade path from tomcat-9.x
    Resolves: RHEL-79313
* Mon Feb 03 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-3
  - Resolves: RHEL-77325 Missing conflicts in spec file
* Fri Jan 24 2025 Adam Krajcik <akrajcik@redhat.com> - 1:9.0.87-2
  - Initial commit on c10s
    Resolves: RHEL-69841
  - tomcat: RCE due to TOCTOU issue in JSP compilation (CVE-2024-50379)

Files

/usr/share/java/tomcat
/usr/share/java/tomcat-jsp-2.3-api.jar
/usr/share/java/tomcat-jsp-api.jar
/usr/share/java/tomcat/tomcat-jsp-2.3-api.jar
/usr/share/java/tomcat/tomcat-jsp-api.jar
/usr/share/maven-metadata/tomcat9-tomcat-jsp-api.xml
/usr/share/maven-poms/tomcat
/usr/share/maven-poms/tomcat/tomcat-jsp-api.pom

Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Oct 24 06:52:49 2025

tomcat9-jsp-2.3-api-9.0.87-7.el10 RPM for noarch

From AlmaLinux Kitten 10 AppStream for x86_64

Provides

Requires

License

Changelog

Files