| Revision Date: | 2017-08-10 | Version: | 1 | | Title: | CVE-2016-6817 on Ubuntu 16.04 LTS (xenial) - medium. | | Description: | The HTTP/2 header parser in Apache Tomcat 9.0.0.M1 to 9.0.0.M11 and 8.5.0 to 8.5.6 entered an infinite loop if a header was received that was larger than the available buffer. This made a denial of service attack possible.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2016-6817
| | Platform(s): | Ubuntu 16.04 LTS
| Product(s): | | | Definition Synopsis | | Ubuntu 16.04 LTS (xenial) is installed. AND Package Information
NOT libservlet2.5-java package in xenial, while related to the CVE in some way, is not affected.
OR NOT libservlet3.0-java package in xenial, while related to the CVE in some way, is not affected.
OR NOT libtomcat7-java package in xenial, while related to the CVE in some way, is not affected.
OR NOT tomcat7 package in xenial, while related to the CVE in some way, is not affected.
OR NOT tomcat7-admin package in xenial, while related to the CVE in some way, is not affected.
OR NOT tomcat7-common package in xenial, while related to the CVE in some way, is not affected.
OR NOT tomcat7-examples package in xenial, while related to the CVE in some way, is not affected.
OR NOT tomcat7-user package in xenial, while related to the CVE in some way, is not affected.
OR NOT libservlet3.1-java package in xenial, while related to the CVE in some way, is not affected.
OR NOT libtomcat8-java package in xenial, while related to the CVE in some way, is not affected.
OR NOT tomcat8 package in xenial, while related to the CVE in some way, is not affected.
OR NOT tomcat8-admin package in xenial, while related to the CVE in some way, is not affected.
OR NOT tomcat8-common package in xenial, while related to the CVE in some way, is not affected.
OR NOT tomcat8-examples package in xenial, while related to the CVE in some way, is not affected.
OR NOT tomcat8-user package in xenial, while related to the CVE in some way, is not affected.
|
|