-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu,  4 Jun 2026 12:53:56 CEST
Source: tomcat10
Architecture: source
Version: 10.1.55-1~deb12u1
Distribution: bookworm-security
Urgency: medium
Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Checksums-Sha1:
 d1a7e8d15c4c9d2b8274731dd3ea2f7d09376977 3046 tomcat10_10.1.55-1~deb12u1.dsc
 bc23473c452496843f3a602c22fbb247d88b470a 4993964 tomcat10_10.1.55.orig.tar.xz
 01f692590b82b2d3028a730416fb005d794bcb5a 52996 tomcat10_10.1.55-1~deb12u1.debian.tar.xz
 2352eaf0cb6228c065edac02f01f3a1b70d7e738 17210 tomcat10_10.1.55-1~deb12u1_amd64.buildinfo
Checksums-Sha256:
 a650d31b36490524f3ab329cc9f8db1ec7f17084d3ea78f53bc53b08c61746f8 3046 tomcat10_10.1.55-1~deb12u1.dsc
 c6eb11993e4d007167db6914bc6a205a93e7761d7b2569d2665c789071220222 4993964 tomcat10_10.1.55.orig.tar.xz
 34daecc3f2a0059433b9022a1d5af265450f985f491f76fb28a403c5c8afd6d2 52996 tomcat10_10.1.55-1~deb12u1.debian.tar.xz
 d1cdd2befff80834694322eb4b7fd0c0e4a76439b28a1a600f5bf093d934a293 17210 tomcat10_10.1.55-1~deb12u1_amd64.buildinfo
Changes:
 tomcat10 (10.1.55-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 10.1.55.
     - Fixes the following security vulnerabilities identified as
       CVE-2026-41284, CVE-2026-41293, CVE-2026-42498, CVE-2026-43512,
       CVE-2026-43513, CVE-2026-43514, CVE-2026-43515, CVE-2026-34500,
       CVE-2026-34487, CVE-2026-34483, CVE-2026-32990, CVE-2026-29146,
       CVE-2026-29145, CVE-2026-29129, CVE-2026-25854, CVE-2026-24880
   * Refresh the patches.
   * New build dependency on Bouncy Castle.
Files:
 503a5253e3f27318def2f97844b0b21f 3046 java optional tomcat10_10.1.55-1~deb12u1.dsc
 dc5d4bbd4fe635299dc19e4010fcf829 4993964 java optional tomcat10_10.1.55.orig.tar.xz
 f0fe36cfa27f5e37b4b3d6de1d584d18 52996 java optional tomcat10_10.1.55-1~deb12u1.debian.tar.xz
 e5a6f324e25ec19946f419887514a33e 17210 java optional tomcat10_10.1.55-1~deb12u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=XxsT
-----END PGP SIGNATURE-----