Oval Definition:	oval:org.opensuse.security:def:69276
Revision Date: 2021-11-16 Version: 1 Title: Security update for tomcat (Moderate) Description: This update for tomcat fixes the following issues: - CVE-2021-30640: Escape parameters in JNDI Realm queries (bsc#1188279). - CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients (bsc#1188278). - CVE-2021-41079: Fixed a denial of service caused by an unexpected TLS packet (bsc#1190558). Family: unix Class: patch Status: Reference(s): 1127838 1173100 1173659 1173661 1173663 1173869 1173942 1173963 1174186 1174247 1188278 1188279 1190558 CVE-2019-0155 CVE-2019-0804 CVE-2019-14895 CVE-2019-14901 CVE-2019-16746 CVE-2019-19447 CVE-2019-9458 CVE-2020-11668 CVE-2020-14331 CVE-2020-15780 CVE-2021-30640 CVE-2021-33037 CVE-2021-41079 SUSE-SU-2020:0440-1 SUSE-SU-2021:3672-1 Platform(s): SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP3 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_26-default-6-2 is installed OR kernel-livepatch-SLE15-SP1_Update_7-6-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND python-azure-agent-2.2.45-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP3 is installed AND Package Information tomcat-9.0.36-13.1 is installed OR tomcat-admin-webapps-9.0.36-13.1 is installed OR tomcat-el-3_0-api-9.0.36-13.1 is installed OR tomcat-jsp-2_3-api-9.0.36-13.1 is installed OR tomcat-lib-9.0.36-13.1 is installed OR tomcat-servlet-4_0-api-9.0.36-13.1 is installed OR tomcat-webapps-9.0.36-13.1 is installed
BACK