Resolved Bugs
1181223 – CVE-2014-9527 apache-poi: denial of service in HSLFSlideShow via corrupted PPT file<br
fix for RHBZ#1181223 (CVE-2014-9527)

Resolved Bugs
1192339 – drupal7-views-3.10 is available<br
– SA-CONTRIB-2015-039 – Views – Multiple vulnerabilities: https://www.drupal.org/node/2424403
– Release notes: https://www.drupal.org/node/2424103

Resolved Bugs
1192339 – drupal7-views-3.10 is available<br
– SA-CONTRIB-2015-039 – Views – Multiple vulnerabilities: https://www.drupal.org/node/2424403
– Release notes: https://www.drupal.org/node/2424103

Resolved Bugs
1109196 – CVE-2014-0227 Tomcat/JBossWeb: Limited DoS in chunked transfer encoding input filter
1102210 – CVE-2014-0099 Apache Tomcat: Request smuggling via malicious content length header [fedora-all]
1088342 – CVE-2014-0096 Tomcat/JBossWeb: XXE vulnerability via user supplied XSLTs
1102152 – CVE-2014-0096 Apache Tomcat: XXE vulnerability via user supplied XSLTs [fedora-all]
1102678 – CVE-2014-0075 tomcat: Limited DoS in chunked transfer encoding input filter [fedora-all]
1027716 – Problem with log4j link creation on /usr/share/java/log4j
1190821 – CVE-2014-0227 tomcat: Tomcat/JBossWeb: Limited DoS in chunked transfer encoding input filter [fedora-all]
1051743 – tomcat-jsvc service fails to start server
1076949 – tomcat: don’t provide javax.jsp-api and javax.servlet.jsp-api
1102030 – CVE-2014-0099 Tomcat/JBossWeb: Request smuggling via malicious content length header
1072776 – CVE-2014-0075 Tomcat/JBossWeb: Limited DoS in chunked transfer encoding input filter<br
Updated to 7.0.59

Resolved Bugs
1138135 – CVE-2014-3529 apache-poi: XML eXternal Entity (XXE) flaw<br
fix for RHBZ#1138135 (CVE-2014-3574)