Oval Definition:	oval:org.opensuse.security:def:70503
Revision Date: 2021-11-16 Version: 1 Title: Security update for tomcat (Important) Description: This update for tomcat fixes the following issues: - CVE-2021-30640: Escape parameters in JNDI Realm queries (bsc#1188279). - CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients (bsc#1188278). - CVE-2021-41079: Fixed a denial of service caused by an unexpected TLS packet (bsc#1190558). Family: unix Class: patch Status: Reference(s): 1175239 1176069 1188278 1188279 1190558 CVE-2020-14363 CVE-2020-14386 CVE-2021-30640 CVE-2021-33037 CVE-2021-41079 SUSE-SU-2020:2577-1 SUSE-SU-2021:3669-1 Platform(s): SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed AND Package Information kernel-docs-5.3.18-24.15 is installed OR kernel-obs-build-5.3.18-24.15 is installed OR kernel-preempt-5.3.18-24.15 is installed OR kernel-preempt-devel-5.3.18-24.15 is installed OR kernel-source-5.3.18-24.15 is installed OR kernel-syms-5.3.18-24.15 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libX11-1.6.5-3.12 is installed OR libX11-devel-32bit-1.6.5-3.12 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed AND Package Information tomcat-9.0.36-4.63.1 is installed OR tomcat-admin-webapps-9.0.36-4.63.1 is installed OR tomcat-el-3_0-api-9.0.36-4.63.1 is installed OR tomcat-jsp-2_3-api-9.0.36-4.63.1 is installed OR tomcat-lib-9.0.36-4.63.1 is installed OR tomcat-servlet-4_0-api-9.0.36-4.63.1 is installed OR tomcat-webapps-9.0.36-4.63.1 is installed
BACK