Issued:
2014-10-13
Updated:
2014-10-13

RHBA-2014:1550 - tomcatjss bug fix update

Synopsis

tomcatjss bug fix update

Type/Severity

Bug Fix Advisory

Topic

An updated tomcatjss package that fixes one bug is now available for Red Hat Enterprise Linux 6.

Description

The tomcatjss package provides a Java Secure Socket Extension (JSSE) implementation using Java Security Services (JSS) for Tomcat 6.

This update fixes the following bug:

  • Previously, the tomcatjss package missed the strictCiphers implementation. Consequently, the user could not disable weaker ciphers and enable the stronger ciphers. With this update, strictCiphers has been implemented to tomcatjss. (BZ#1084224)

Users of tomcatjss are advised to upgrade to this updated package, which fixes this bug.

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258

Affected Products

ProductVersionArch
Red Hat Enterprise Linux for Scientific Computing6x86_64
Red Hat Enterprise Linux Workstation6x86_64
Red Hat Enterprise Linux Workstation6i386
Red Hat Enterprise Linux Server6x86_64
Red Hat Enterprise Linux Server6i386
Red Hat Enterprise Linux Server from RHUI6x86_64
Red Hat Enterprise Linux Server from RHUI6i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support6x86_64
Red Hat Enterprise Linux Server - Extended Life Cycle Support6i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension6x86_64
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension6i386
Red Hat Enterprise Linux Desktop6x86_64
Red Hat Enterprise Linux Desktop6i386

Updated Packages

  • tomcatjss-2.1.0-3.el6.noarch.rpm
  • tomcatjss-2.1.0-3.el6.src.rpm

Fixes

CVEs

(none)

References

(none)

Additional information