Oval Definition:oval:org.opensuse.security:def:60489
Revision Date:2021-03-30Version:1
Title:Security update for tomcat (Important)
Description:

This update for tomcat fixes the following issues:

- CVE-2021-25122: Apache Tomcat h2c request mix-up (bsc#1182912) - CVE-2021-25329: Complete fix for CVE-2020-9484 (bsc#1182909)
Family:unixClass:patch
Status:Reference(s):1060031
1068612
1078677
1082480
1082481
1092420
1107190
1108719
1123872
1126503
1136976
1139083
1141968
11483483
1148383
1149792
1153108
1153191
1153332
1156317
1156321
1156525
1157770
1159046
1160152
1160153
1160192
1160790
1160851
1161088
1161089
1161670
1164322
1165439
1165643
1167244
1168593
1168930
1169605
1169770
1169786
1169936
1170170
1170302
1170657
1170741
1170939
1171252
1171254
1171273
1171560
1171594
1171661
1171909
1172166
1172167
1172175
1172176
1172409
1173377
1173378
1173380
1182909
1182912
985657
CVE-2009-0159
CVE-2009-1252
CVE-2013-4238
CVE-2013-5211
CVE-2014-3686
CVE-2014-9293
CVE-2014-9294
CVE-2014-9295
CVE-2014-9296
CVE-2014-9297
CVE-2014-9298
CVE-2015-0210
CVE-2015-1798
CVE-2015-1799
CVE-2015-1863
CVE-2015-3405
CVE-2015-4141
CVE-2015-4142
CVE-2015-4143
CVE-2015-5130
CVE-2015-5219
CVE-2015-5300
CVE-2015-5310
CVE-2015-7691
CVE-2015-7692
CVE-2015-7701
CVE-2015-7702
CVE-2015-7703
CVE-2015-7704
CVE-2015-7705
CVE-2015-7848
CVE-2015-7849
CVE-2015-7850
CVE-2015-7851
CVE-2015-7852
CVE-2015-7853
CVE-2015-7854
CVE-2015-7855
CVE-2015-7871
CVE-2015-7973
CVE-2015-7974
CVE-2015-7975
CVE-2015-7976
CVE-2015-7977
CVE-2015-7978
CVE-2015-7979
CVE-2015-8041
CVE-2015-8138
CVE-2015-8139
CVE-2015-8140
CVE-2015-8158
CVE-2016-0772
CVE-2016-1000110
CVE-2016-1547
CVE-2016-1548
CVE-2016-1549
CVE-2016-1550
CVE-2016-1551
CVE-2016-2516
CVE-2016-2517
CVE-2016-2518
CVE-2016-2519
CVE-2016-3189
CVE-2016-4953
CVE-2016-4954
CVE-2016-4955
CVE-2016-4956
CVE-2016-4957
CVE-2016-5636
CVE-2016-5699
CVE-2016-7426
CVE-2016-7427
CVE-2016-7428
CVE-2016-7429
CVE-2016-7431
CVE-2016-7433
CVE-2016-7434
CVE-2016-9042
CVE-2016-9310
CVE-2016-9311
CVE-2017-1000246
CVE-2017-14604
CVE-2017-15706
CVE-2017-6451
CVE-2017-6458
CVE-2017-6460
CVE-2017-6462
CVE-2017-6463
CVE-2017-6464
CVE-2018-1304
CVE-2018-1305
CVE-2018-16301
CVE-2019-1010083
CVE-2019-10220
CVE-2019-12900
CVE-2019-13272
CVE-2019-15043
CVE-2019-15165
CVE-2019-15239
CVE-2019-16785
CVE-2019-16786
CVE-2019-16789
CVE-2019-16792
CVE-2019-16865
CVE-2019-18874
CVE-2019-19911
CVE-2019-3828
CVE-2019-8457
CVE-2020-10663
CVE-2020-10743
CVE-2020-11008
CVE-2020-11076
CVE-2020-11077
CVE-2020-12052
CVE-2020-12059
CVE-2020-12653
CVE-2020-12654
CVE-2020-13254
CVE-2020-13379
CVE-2020-13596
CVE-2020-15563
CVE-2020-15565
CVE-2020-15567
CVE-2020-1747
CVE-2020-5260
CVE-2020-5312
CVE-2020-5313
CVE-2020-5390
CVE-2020-8151
CVE-2020-9543
CVE-2021-25122
CVE-2021-25329
SUSE-SU-2018:0817-1
SUSE-SU-2018:2058-1
SUSE-SU-2019:1601-1
SUSE-SU-2019:1955-1
SUSE-SU-2019:2669-1
SUSE-SU-2020:0660-1
SUSE-SU-2020:1158-1
SUSE-SU-2020:1886-1
SUSE-SU-2020:1901-1
SUSE-SU-2021:0988-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • qemu-2.11.2-lp150.7.18 is installed
  • OR qemu-arm-2.11.2-lp150.7.18 is installed
  • OR qemu-block-curl-2.11.2-lp150.7.18 is installed
  • OR qemu-block-dmg-2.11.2-lp150.7.18 is installed
  • OR qemu-block-gluster-2.11.2-lp150.7.18 is installed
  • OR qemu-block-iscsi-2.11.2-lp150.7.18 is installed
  • OR qemu-block-rbd-2.11.2-lp150.7.18 is installed
  • OR qemu-block-ssh-2.11.2-lp150.7.18 is installed
  • OR qemu-extra-2.11.2-lp150.7.18 is installed
  • OR qemu-guest-agent-2.11.2-lp150.7.18 is installed
  • OR qemu-ipxe-1.0.0+-lp150.7.18 is installed
  • OR qemu-ksm-2.11.2-lp150.7.18 is installed
  • OR qemu-kvm-2.11.2-lp150.7.18 is installed
  • OR qemu-lang-2.11.2-lp150.7.18 is installed
  • OR qemu-linux-user-2.11.2-lp150.7.18 is installed
  • OR qemu-ppc-2.11.2-lp150.7.18 is installed
  • OR qemu-s390-2.11.2-lp150.7.18 is installed
  • OR qemu-seabios-1.11.0-lp150.7.18 is installed
  • OR qemu-sgabios-8-lp150.7.18 is installed
  • OR qemu-testsuite-2.11.2-lp150.7.18 is installed
  • OR qemu-tools-2.11.2-lp150.7.18 is installed
  • OR qemu-vgabios-1.11.0-lp150.7.18 is installed
  • OR qemu-x86-2.11.2-lp150.7.18 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libxslt-1.1.32-lp151.3.3 is installed
  • OR libxslt-devel-1.1.32-lp151.3.3 is installed
  • OR libxslt-devel-32bit-1.1.32-lp151.3.3 is installed
  • OR libxslt-python-1.1.32-lp151.3.3 is installed
  • OR libxslt-tools-1.1.32-lp151.3.3 is installed
  • OR libxslt1-1.1.32-lp151.3.3 is installed
  • OR libxslt1-32bit-1.1.32-lp151.3.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND dracut-saltboot-0.1.1590413773.a959db7-lp152.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • ntp-4.2.8p10-63 is installed
  • OR ntp-doc-4.2.8p10-63 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • xen-4.9.4_08-3.66 is installed
  • OR xen-doc-html-4.9.4_08-3.66 is installed
  • OR xen-libs-4.9.4_08-3.66 is installed
  • OR xen-libs-32bit-4.9.4_08-3.66 is installed
  • OR xen-tools-4.9.4_08-3.66 is installed
  • OR xen-tools-domU-4.9.4_08-3.66 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_100-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libprocps3-3.3.9-11.14 is installed
  • OR procps-3.3.9-11.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • ghostscript-9.25-23.13 is installed
  • OR ghostscript-x11-9.25-23.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • libfreebl3-3.53.1-58.48 is installed
  • OR libfreebl3-32bit-3.53.1-58.48 is installed
  • OR libfreebl3-hmac-3.53.1-58.48 is installed
  • OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed
  • OR libsoftokn3-3.53.1-58.48 is installed
  • OR libsoftokn3-32bit-3.53.1-58.48 is installed
  • OR libsoftokn3-hmac-3.53.1-58.48 is installed
  • OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed
  • OR mozilla-nspr-4.25-19.15 is installed
  • OR mozilla-nspr-32bit-4.25-19.15 is installed
  • OR mozilla-nspr-devel-4.25-19.15 is installed
  • OR mozilla-nss-3.53.1-58.48 is installed
  • OR mozilla-nss-32bit-3.53.1-58.48 is installed
  • OR mozilla-nss-certs-3.53.1-58.48 is installed
  • OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed
  • OR mozilla-nss-devel-3.53.1-58.48 is installed
  • OR mozilla-nss-sysinit-3.53.1-58.48 is installed
  • OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed
  • OR mozilla-nss-tools-3.53.1-58.48 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • AND
  • tomcat-9.0.36-3.64.1 is installed
  • OR tomcat-admin-webapps-9.0.36-3.64.1 is installed
  • OR tomcat-docs-webapp-9.0.36-3.64.1 is installed
  • OR tomcat-el-3_0-api-9.0.36-3.64.1 is installed
  • OR tomcat-javadoc-9.0.36-3.64.1 is installed
  • OR tomcat-jsp-2_3-api-9.0.36-3.64.1 is installed
  • OR tomcat-lib-9.0.36-3.64.1 is installed
  • OR tomcat-servlet-4_0-api-9.0.36-3.64.1 is installed
  • OR tomcat-webapps-9.0.36-3.64.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND
  • tomcat-9.0.36-3.64.1 is installed
  • OR tomcat-admin-webapps-9.0.36-3.64.1 is installed
  • OR tomcat-docs-webapp-9.0.36-3.64.1 is installed
  • OR tomcat-el-3_0-api-9.0.36-3.64.1 is installed
  • OR tomcat-javadoc-9.0.36-3.64.1 is installed
  • OR tomcat-jsp-2_3-api-9.0.36-3.64.1 is installed
  • OR tomcat-lib-9.0.36-3.64.1 is installed
  • OR tomcat-servlet-4_0-api-9.0.36-3.64.1 is installed
  • OR tomcat-webapps-9.0.36-3.64.1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • bzip2-1.0.6-30.5 is installed
  • OR bzip2-doc-1.0.6-30.5 is installed
  • OR libbz2-1-1.0.6-30.5 is installed
  • OR libbz2-1-32bit-1.0.6-30.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libdcerpc0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libdcerpc0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-krb5pac0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-nbt0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-standard0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-standard0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libnetapi0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libnetapi0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-credentials0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-errors0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-hostconfig0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-passdb0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-util0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-util0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamdb0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamdb0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbclient0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbclient0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbconf0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbconf0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbldap0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbldap0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libtevent-util0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libtevent-util0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libwbclient0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libwbclient0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-client-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-client-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-doc-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-libs-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-libs-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-winbind-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-winbind-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ceph-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR ceph-common-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libcephfs2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librados2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR libradosstriper1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librbd1-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR librgw2-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-cephfs-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rados-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rbd-12.2.12+git.1587570958.35d78d0243-2.45 is installed
  • OR python-rgw-12.2.12+git.1587570958.35d78d0243-2.45 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Twisted-15.2.1-9.8 is installed
    • BACK