-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 4 Jun 2026 16:55:15 CEST Source: tomcat11 Architecture: source Version: 11.0.22-1~deb13u1 Distribution: trixie-security Urgency: medium Maintainer: Debian Java Maintainers Changed-By: Markus Koschany Checksums-Sha1: 264cc65f1cf448ebe4d31a50bda41fed7dcbd38e 3113 tomcat11_11.0.22-1~deb13u1.dsc aa4d9aaf7e0def5811e288aceaeacf0b8efaecf1 4962096 tomcat11_11.0.22.orig.tar.xz cd5b37cc2e7ccf8dc9775198531751e2ccc07c57 34428 tomcat11_11.0.22-1~deb13u1.debian.tar.xz 5a88064388d042eae465f0ca436697c559cec17b 17522 tomcat11_11.0.22-1~deb13u1_amd64.buildinfo Checksums-Sha256: e39ff765f8c65508e25f92dfbc465797d4df5c8e5ce91bfec37bc7e927c53878 3113 tomcat11_11.0.22-1~deb13u1.dsc 64ccdb93466a0c1ec4642b3ffa23bad3c67859046d2a89061435915eefb71db1 4962096 tomcat11_11.0.22.orig.tar.xz 5029760b0e206720634fe3c15e6d5284d6aebec9a4f4f6c35e06b8105158388b 34428 tomcat11_11.0.22-1~deb13u1.debian.tar.xz 5d1b0ae5e852584718c5e98c7b710908b965f94c50cf506fff09e34e296ae915 17522 tomcat11_11.0.22-1~deb13u1_amd64.buildinfo Changes: tomcat11 (11.0.22-1~deb13u1) trixie-security; urgency=medium . * Backport 11.0.22 to trixie. - Fixes the following security vulnerabilities identified as CVE-2026-41284, CVE-2026-41293, CVE-2026-42498, CVE-2026-43512, CVE-2026-43513, CVE-2026-43514, CVE-2026-43515, CVE-2026-34500, CVE-2026-34487, CVE-2026-34483, CVE-2026-32990, CVE-2026-29146, CVE-2026-29145, CVE-2026-29129, CVE-2026-25854, CVE-2026-24880 and CVE-2026-24734. Files: 2df6f566a3cf6c4cebd848fc63456109 3113 java optional tomcat11_11.0.22-1~deb13u1.dsc a58ed9b7acc8f05d12329a439fbeb726 4962096 java optional tomcat11_11.0.22.orig.tar.xz 18ec8d8449fb480e51f602727c6ee449 34428 java optional tomcat11_11.0.22-1~deb13u1.debian.tar.xz cc33be1b44bf84ad7953d30997548d3e 17522 java optional tomcat11_11.0.22-1~deb13u1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmohkdhfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp YW4ub3JnAAoJENmtFLlRO1Hk9VUQAJuDkGtnTcD1Ac0rXBgW+F84L+bNCWbSrUkA 7a60lIomj7VaVvP7mRXfS+z8U3iecKQJTu01tfjpVmaJvuWX1BPizIvEXZkx/zBI 9F3YbnFYUdNH3XL+MVx2VNEwpCRivgC0JKdyzV5dWxI0857WB7yD4gsQFd7d7XFO 8I2ckKO/8A+kClyOYPTxGmaDx8pHJyjJK/7TYedellr6qFiR1W3CCj3AHkp8JiK1 V9srHyBxart68XI1iZGzOFJ3MwUb0E9Kc0jg/VsdGClUqkVIxBZL+NRLbf3qPrzG EbEhx8XYtj+xDEZZqK9a5daTViYHZsV4cRwdzjz+nfRmxd1J/NItlICWxOBiFZuk FuhfpDOFPmQ2mdy6f1+mBAkNJk+Juvwtr0O42HlF6rLOKs0fxCpDpviLW3ru5YvX pzv95FP7DuroQ+AXn99UYWPdw2EM9ItcRIXhg634sml7faYKDYAPhhcTGGRaqo4x y9nOGQ6E60XJBbWVs2EV8SfbnqitjsErmPVAkserNKPjw9dcOqK/n1ltC0ArWAhf uPUdlN0EaXaoWlUDKMOmPSXEkVXoUyAb6KRqp47PRdf5KVIExrFowda0HP7uhrLJ JZHFSkSrHDnukdrWIaN9AbjrPMAfR+uO79yws7iMPI6eVm4Bbd+q7HpxO43C04iT 2RF/CsWL =wLFk -----END PGP SIGNATURE-----