Re: [SECURITY] [DSA 1447-1] New tomcat5.5 packages fix several vulnerabilities

To: Nihil <nihil@nanihil.com>
Cc: debian-security@lists.debian.org
Subject: Re: [SECURITY] [DSA 1447-1] New tomcat5.5 packages fix several vulnerabilities
From: Florian Weimer <fw@deneb.enyo.de>
Date: Sun, 06 Jan 2008 19:54:38 +0100
Message-id: <[🔎] 87fxxa4wep.fsf@mid.deneb.enyo.de>
In-reply-to: <[🔎] 1199525586.8906.7.camel@localhost> (nihil@nanihil.com's message of "Sat, 05 Jan 2008 10:33:06 +0100")
References: <20080103215449.GA12756@galadriel.inutil.org> <[🔎] 1199525586.8906.7.camel@localhost>

> installing the update breaks webapps
>
> with the following error
> org.apache.commons.logging.LogConfigurationException: java.security.AccessControlException: access denied (java.io.FilePermission /home/nihil/www/java/WEB-INF/classes/logging.properties read) (Caused by java.security.AccessControlException: access denied (java.io.FilePermission /home/nihil/www/java/WEB-INF/classes/logging.properties read))
> (it worked before the update and permission are set correctly, i double checked)

This is odd.  Does it work again if you downgrade to the version before
the security update?

Reply to:

Follow-Ups:
- Re: [SECURITY] [DSA 1447-1] New tomcat5.5 packages fix several vulnerabilities
  - From: Nihil <nihil@nanihil.com>

References:
- Re: [SECURITY] [DSA 1447-1] New tomcat5.5 packages fix several vulnerabilities
  - From: Nihil <nihil@nanihil.com>

Prev by Date: Re: ping22: can not kill this process
Next by Date: Re: [SECURITY] [DSA 1447-1] New tomcat5.5 packages fix several vulnerabilities
Previous by thread: Re: [SECURITY] [DSA 1447-1] New tomcat5.5 packages fix several vulnerabilities
Next by thread: Re: [SECURITY] [DSA 1447-1] New tomcat5.5 packages fix several vulnerabilities
Index(es):
- Date
- Thread