Oval Definition:	oval:org.opensuse.security:def:106738
Revision Date: 2021-11-16 Version: 1 Title: Security update for tomcat (Important) Description: This update for tomcat fixes the following issues: - CVE-2021-30640: Escape parameters in JNDI Realm queries (bsc#1188279). - CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients (bsc#1188278). - CVE-2021-41079: Fixed a denial of service caused by an unexpected TLS packet (bsc#1190558). Family: unix Class: patch Status: Reference(s): 1188278 1188279 1190558 CVE-2008-1801 CVE-2008-1802 CVE-2008-1803 CVE-2018-20174 CVE-2018-20175 CVE-2018-20176 CVE-2018-20177 CVE-2018-20178 CVE-2018-20179 CVE-2018-20180 CVE-2018-20181 CVE-2018-20182 CVE-2018-8791 CVE-2018-8792 CVE-2018-8793 CVE-2018-8794 CVE-2018-8795 CVE-2018-8796 CVE-2018-8797 CVE-2018-8798 CVE-2018-8799 CVE-2018-8800 CVE-2021-30640 CVE-2021-33037 CVE-2021-41079 Platform(s): openSUSE Tumbleweed SUSE CaaS Platform 4.0 Product(s): Definition Synopsis openSUSE Tumbleweed is installed AND rdesktop-1.9.0-4.6 is installed Definition Synopsis SUSE CaaS Platform 4.0 is installed AND Package Information tomcat-9.0.36-4.63.1 is installed OR tomcat-admin-webapps-9.0.36-4.63.1 is installed OR tomcat-el-3_0-api-9.0.36-4.63.1 is installed OR tomcat-jsp-2_3-api-9.0.36-4.63.1 is installed OR tomcat-lib-9.0.36-4.63.1 is installed OR tomcat-servlet-4_0-api-9.0.36-4.63.1 is installed OR tomcat-webapps-9.0.36-4.63.1 is installed
BACK