Oval Definition:	oval:org.opensuse.security:def:74767
Revision Date: 2020-12-01 Version: 1 Title: Security update for tomcat (Important) Description: This update for tomcat to version 9.0.31 fixes the following issues: Security issues fixed: - CVE-2019-17569: Fixed a regression in the handling of Transfer-Encoding headers that would have allowed HTTP Request Smuggling (bsc#1164825). - CVE-2020-1935: Fixed an HTTP Request Smuggling issue (bsc#1164860). - CVE-2020-1938: Fixed a file contents disclosure vulnerability (bsc#1164692). This update was imported from the SUSE:SLE-15-SP1:Update update project. Family: unix Class: patch Status: Reference(s): 1157651 1164692 1164825 1164860 CVE-2019-17569 CVE-2019-18898 CVE-2020-1935 CVE-2020-1938 openSUSE-SU-2020:0345-1 openSUSE-SU-2020:0744-1 Platform(s): openSUSE Leap 15.1 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information tomcat-9.0.31-lp151.3.12 is installed OR tomcat-admin-webapps-9.0.31-lp151.3.12 is installed OR tomcat-docs-webapp-9.0.31-lp151.3.12 is installed OR tomcat-el-3_0-api-9.0.31-lp151.3.12 is installed OR tomcat-embed-9.0.31-lp151.3.12 is installed OR tomcat-javadoc-9.0.31-lp151.3.12 is installed OR tomcat-jsp-2_3-api-9.0.31-lp151.3.12 is installed OR tomcat-jsvc-9.0.31-lp151.3.12 is installed OR tomcat-lib-9.0.31-lp151.3.12 is installed OR tomcat-servlet-4_0-api-9.0.31-lp151.3.12 is installed OR tomcat-webapps-9.0.31-lp151.3.12 is installed
BACK