Secunia Security Advisory – Debian has issued an update for tomcat5.5. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks, and a security issue, which can be exploited by malicious people to disclose potentially sensitive information.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/62841/sa28549.txt
Source: https://packetstormsecurity.com/files/62841/Secunia-Security-Advisory-28549.html