Resolved Bugs
1109196 – CVE-2014-0227 Tomcat/JBossWeb: Limited DoS in chunked transfer encoding input filter
1102210 – CVE-2014-0099 Apache Tomcat: Request smuggling via malicious content length header [fedora-all]
1088342 – CVE-2014-0096 Tomcat/JBossWeb: XXE vulnerability via user supplied XSLTs
1102152 – CVE-2014-0096 Apache Tomcat: XXE vulnerability via user supplied XSLTs [fedora-all]
1102678 – CVE-2014-0075 tomcat: Limited DoS in chunked transfer encoding input filter [fedora-all]
1027716 – Problem with log4j link creation on /usr/share/java/log4j
1190821 – CVE-2014-0227 tomcat: Tomcat/JBossWeb: Limited DoS in chunked transfer encoding input filter [fedora-all]
1051743 – tomcat-jsvc service fails to start server
1076949 – tomcat: don’t provide javax.jsp-api and javax.servlet.jsp-api
1102030 – CVE-2014-0099 Tomcat/JBossWeb: Request smuggling via malicious content length header
1072776 – CVE-2014-0075 Tomcat/JBossWeb: Limited DoS in chunked transfer encoding input filter<br
Updated to 7.0.59