| Revision Date: | 2020-12-01 | Version: | 1 |
| Title: | Security update for tomcat (Moderate) |
| Description: |
This update for tomcat to version 9.0.21 fixes the following issues:
Security issues fixed:
- CVE-2019-0199: Fixed a denial of service in the HTTP/2 implementation related to streams with excessive numbers of SETTINGS frames (bsc#1131055). - CVE-2019-0221: Fixed a cross site scripting vulnerability with the SSI printenv command (bsc#1136085).
Non-security issues fixed:
- Increase maximum number of threads and open files for tomcat (bsc#1111966).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1111966
1131055
1136085
1173674
CVE-2019-0199
CVE-2019-0221
CVE-2020-15503
SUSE-SU-2019:1895-1
SUSE-SU-2020:2029-1
|
| Platform(s): | SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Workstation Extension 15 SP1
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information
tomcat-9.0.21-4.5 is installed
OR tomcat-admin-webapps-9.0.21-4.5 is installed
OR tomcat-el-3_0-api-9.0.21-4.5 is installed
OR tomcat-jsp-2_3-api-9.0.21-4.5 is installed
OR tomcat-lib-9.0.21-4.5 is installed
OR tomcat-servlet-4_0-api-9.0.21-4.5 is installed
OR tomcat-webapps-9.0.21-4.5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
AND Package Information
libraw-0.18.9-3.11 is installed
OR libraw-devel-0.18.9-3.11 is installed
OR libraw16-0.18.9-3.11 is installed
|