Issued:

2011-12-06

Updated:

2011-12-06

RHBA-2011:1674 - tomcatjss bug fix update

Synopsis

tomcatjss bug fix update

Type/Severity

Bug Fix Advisory (none)

Topic

An updated tomcatjss package that fixes one bug is now available for Red Hat Enterprise Linux 6.

Description

The tomcatjss package provides a Java Secure Socket Extension (JSSE) implementation using Java Security Services (JSS) for Tomcat 6.

This update fixes the following bug:

• If the server "admin" port was configured to accept a specific client authentication certificate, such as SSL (Secure Sockets Layer) certificate, other alternative authentication types failed even if the port was configured to accept them. The underlying code has been modified and the alternative authentication types are successful if called upon. (BZ#705107)

All tomcatjss users are advised to upgrade to this updated package, which fixes this bug.

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at This content is not included.https://access.redhat.com/kb/docs/DOC-11259

Affected Products

Updated Packages

• tomcatjss-2.1.0-2.el6.src.rpm
• tomcatjss-2.1.0-2.el6.noarch.rpm

Fixes

• This content is not included.BZ - 705107

CVEs

(none)

References

(none)

Additional information

• The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
• Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.