Oval Definition:oval:org.mitre.oval:def:21891
Revision Date:2014-02-24Version:30
Title:RHSA-2011:0335: tomcat6 security and bug fix update (Important)
Description:Apache Tomcat 7.0.0 through 7.0.6 and 6.0.0 through 6.0.30 does not enforce the maxHttpHeaderSize limit for requests involving the NIO HTTP connector, which allows remote attackers to cause a denial of service (OutOfMemoryError) via a crafted request.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-4476
CVE-2011-0534
RHSA-2011:0335-01
Platform(s):Red Hat Enterprise Linux 6
Product(s):tomcat6
Definition Synopsis
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • AND Packages section
  • tomcat6-docs-webapp is earlier than 0:6.0.24-24.el6_0
  • OR tomcat6-lib is earlier than 0:6.0.24-24.el6_0
  • OR tomcat6-webapps is earlier than 0:6.0.24-24.el6_0
  • OR tomcat6-jsp-2.1-api is earlier than 0:6.0.24-24.el6_0
  • OR tomcat6-javadoc is earlier than 0:6.0.24-24.el6_0
  • OR tomcat6-el-2.1-api is earlier than 0:6.0.24-24.el6_0
  • OR tomcat6-admin-webapps is earlier than 0:6.0.24-24.el6_0
  • OR tomcat6-servlet-2.5-api is earlier than 0:6.0.24-24.el6_0
  • OR tomcat6-log4j is earlier than 0:6.0.24-24.el6_0
  • OR tomcat6 is earlier than 0:6.0.24-24.el6_0
    • BACK