Oval Definition:oval:org.opensuse.security:def:64042
Revision Date:2020-12-01Version:1
Title:Security update for tomcat (Important)
Description:

This update for tomcat fixes the following issues:

Tomcat was updated to 9.0.36 See changelog at

- CVE-2020-11996: Fixed an issue which by sending a specially crafted sequence of HTTP/2 requests could have triggered high CPU usage for several seconds making potentially the server unresponsive (bsc#1173389).
Family:unixClass:patch
Status:Reference(s):1051510
1058115
1065600
1124825
1125401
1131277
1134135
1144504
1146090
1146091
1146093
1146094
1146095
1146097
1146099
1146100
1149458
1151839
1160947
1163524
1166965
1167976
1168468
1169740
1170139
1170232
1170415
1171355
1171417
1171675
1172073
1172366
1172651
1173115
1173233
1173334
1173389
1173986
1174420
1174628
1175228
1175306
1175476
1175674
1175721
1175882
1176011
1176235
1176278
1176381
1176423
1176482
1176485
1176698
1176721
1176722
1176723
1176725
1176732
1176756
1176869
1176907
1176922
1176935
1176950
1176990
1177027
1177086
1177121
1177206
1177340
1177410
1177411
1177470
1177511
1177724
1177725
1177766
1177816
1178123
1178330
1178393
1178669
1178765
1178782
1178838
992038
CVE-2018-8956
CVE-2019-12625
CVE-2019-12900
CVE-2019-14562
CVE-2019-7637
CVE-2019-9511
CVE-2019-9512
CVE-2019-9513
CVE-2019-9514
CVE-2019-9515
CVE-2019-9516
CVE-2019-9517
CVE-2019-9518
CVE-2020-0404
CVE-2020-0427
CVE-2020-0430
CVE-2020-0431
CVE-2020-0432
CVE-2020-11868
CVE-2020-11996
CVE-2020-12351
CVE-2020-12352
CVE-2020-13817
CVE-2020-14344
CVE-2020-14351
CVE-2020-14381
CVE-2020-14390
CVE-2020-15025
CVE-2020-15673
CVE-2020-15676
CVE-2020-15677
CVE-2020-15678
CVE-2020-16120
CVE-2020-25212
CVE-2020-25284
CVE-2020-25285
CVE-2020-25641
CVE-2020-25643
CVE-2020-25645
CVE-2020-25656
CVE-2020-25668
CVE-2020-25704
CVE-2020-25705
CVE-2020-26088
CVE-2020-27673
CVE-2020-27675
CVE-2020-8694
openSUSE-SU-2019:1633-1
openSUSE-SU-2019:2114-1
openSUSE-SU-2019:2595-1
openSUSE-SU-2020:0934-1
openSUSE-SU-2020:1535-1
SUSE-SU-2020:2117-1
SUSE-SU-2020:3544-1
Platform(s):openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • SDL2-2.0.8-lp151.4.3 is installed
  • OR libSDL2-2_0-0-2.0.8-lp151.4.3 is installed
  • OR libSDL2-2_0-0-32bit-2.0.8-lp151.4.3 is installed
  • OR libSDL2-devel-2.0.8-lp151.4.3 is installed
  • OR libSDL2-devel-32bit-2.0.8-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • tomcat-9.0.36-3.42 is installed
  • OR tomcat-admin-webapps-9.0.36-3.42 is installed
  • OR tomcat-docs-webapp-9.0.36-3.42 is installed
  • OR tomcat-el-3_0-api-9.0.36-3.42 is installed
  • OR tomcat-javadoc-9.0.36-3.42 is installed
  • OR tomcat-jsp-2_3-api-9.0.36-3.42 is installed
  • OR tomcat-lib-9.0.36-3.42 is installed
  • OR tomcat-servlet-4_0-api-9.0.36-3.42 is installed
  • OR tomcat-webapps-9.0.36-3.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • libX11-1.6.2-12.8 is installed
  • OR libX11-6-1.6.2-12.8 is installed
  • OR libX11-6-32bit-1.6.2-12.8 is installed
  • OR libX11-data-1.6.2-12.8 is installed
  • OR libX11-xcb1-1.6.2-12.8 is installed
  • OR libX11-xcb1-32bit-1.6.2-12.8 is installed
  • OR libxcb-1.10-4.5 is installed
  • OR libxcb-dri2-0-1.10-4.5 is installed
  • OR libxcb-dri2-0-32bit-1.10-4.5 is installed
  • OR libxcb-dri3-0-1.10-4.5 is installed
  • OR libxcb-dri3-0-32bit-1.10-4.5 is installed
  • OR libxcb-glx0-1.10-4.5 is installed
  • OR libxcb-glx0-32bit-1.10-4.5 is installed
  • OR libxcb-present0-1.10-4.5 is installed
  • OR libxcb-present0-32bit-1.10-4.5 is installed
  • OR libxcb-randr0-1.10-4.5 is installed
  • OR libxcb-render0-1.10-4.5 is installed
  • OR libxcb-render0-32bit-1.10-4.5 is installed
  • OR libxcb-shape0-1.10-4.5 is installed
  • OR libxcb-shm0-1.10-4.5 is installed
  • OR libxcb-shm0-32bit-1.10-4.5 is installed
  • OR libxcb-sync1-1.10-4.5 is installed
  • OR libxcb-sync1-32bit-1.10-4.5 is installed
  • OR libxcb-xf86dri0-1.10-4.5 is installed
  • OR libxcb-xfixes0-1.10-4.5 is installed
  • OR libxcb-xfixes0-32bit-1.10-4.5 is installed
  • OR libxcb-xinerama0-1.10-4.5 is installed
  • OR libxcb-xkb1-1.10-4.5 is installed
  • OR libxcb-xkb1-32bit-1.10-4.5 is installed
  • OR libxcb-xv0-1.10-4.5 is installed
  • OR libxcb1-1.10-4.5 is installed
  • OR libxcb1-32bit-1.10-4.5 is installed
    • BACK