0001-set-UTF-8-as-default-character-encoding.patch
0002-do-not-load-AJP13-connector-by-default.patch
0003-disable-APR-library-loading.patch
0004-split-deploy-webapps-target-from-deploy-target.patch
0005-change-default-DBCP-factory-class.patch
0006-add-JARs-below-var-to-class-loader.patch
0007-add-OSGi-headers-to-servlet-api.patch
0008-add-OSGI-headers-to-jsp-api.patch
0010-Use-java.security.policy-file-in-catalina.sh.patch
0011-CVE-2012-0022-regression-fix.patch
0012-CVE-2012-2733.patch
0013-CVE-2012-588x.patch
CVE-2012-3546.patch
CVE-2012-4431.patch
CVE-2012-4534.patch
CVE-2012-3544.patch
CVE-2013-2067.patch
CVE-2013-4286.patch
CVE-2013-4322.patch
CVE-2014-0033.patch
CVE-2014-0075.patch
CVE-2014-0096.patch
CVE-2014-0099.patch
CVE-2014-0227.patch
CVE-2014-0230.patch
CVE-2014-7810.patch
CVE-2015-5174.patch
CVE-2015-5345.patch
CVE-2016-0706.patch
CVE-2016-0714.patch
CVE-2016-0763.patch
CVE-2016-3092.patch
CVE-2015-5345-2.patch
