Oval Definition:oval:org.opensuse.security:def:202229885
Revision Date:2022-05-22Version:1
Title:CVE-2022-29885
Description:

The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the EncryptInterceptor does provide confidentiality and integrity protection, it does not protect against all risks associated with running over any untrusted network, particularly DoS risks.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2022-29885
SUSE CVE-2022-29885
Platform(s):SUSE CaaS Platform 4.0
SUSE Enterprise Storage 7
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Manager Proxy 4.1
SUSE Manager Retail Branch Server 4.1
SUSE Manager Server 4.1
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • Release Information
  • SUSE CaaS Platform 4.0 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • tomcat is affected
  • OR tomcat-admin-webapps is affected
  • OR tomcat-el-3_0-api is affected
  • OR tomcat-jsp-2_3-api is affected
  • OR tomcat-lib is affected
  • OR tomcat-servlet-4_0-api is affected
  • OR tomcat-webapps is affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • tomcat is affected
  • OR tomcat-admin-webapps is affected
  • OR tomcat-el-3_0-api is affected
  • OR tomcat-jsp-2_3-api is affected
  • OR tomcat-lib is affected
  • OR tomcat-servlet-4_0-api is affected
  • OR tomcat-webapps is affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • OR SUSE Manager Proxy 4.1 is installed
  • OR SUSE Manager Retail Branch Server 4.1 is installed
  • OR SUSE Manager Server 4.1 is installed
  • AND Package Information
  • tomcat is affected
  • OR tomcat-admin-webapps is affected
  • OR tomcat-el-3_0-api is affected
  • OR tomcat-jsp-2_3-api is affected
  • OR tomcat-lib is affected
  • OR tomcat-servlet-4_0-api is affected
  • OR tomcat-webapps is affected
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 8 is installed
  • OR SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • tomcat is not affected
  • OR tomcat-admin-webapps is not affected
  • OR tomcat-docs-webapp is not affected
  • OR tomcat-el-3_0-api is not affected
  • OR tomcat-javadoc is not affected
  • OR tomcat-jsp-2_3-api is not affected
  • OR tomcat-lib is not affected
  • OR tomcat-servlet-3_1-api is not affected
  • OR tomcat-webapps is not affected
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 9 is installed
  • OR SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • tomcat is affected
  • OR tomcat-admin-webapps is affected
  • OR tomcat-docs-webapp is affected
  • OR tomcat-el-3_0-api is affected
  • OR tomcat-javadoc is affected
  • OR tomcat-jsp-2_3-api is affected
  • OR tomcat-lib is affected
  • OR tomcat-servlet-4_0-api is affected
  • OR tomcat-webapps is affected
    • Definition Synopsis
  • Release Information
  • SUSE Enterprise Storage 7 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • AND Package Information
  • tomcat is affected
  • OR tomcat-admin-webapps is affected
  • OR tomcat-el-3_0-api is affected
  • OR tomcat-jsp-2_3-api is affected
  • OR tomcat-lib is affected
  • OR tomcat-servlet-4_0-api is affected
  • OR tomcat-webapps is affected
    • BACK