Oval Definition:oval:org.opensuse.security:def:93186
Revision Date:2021-04-01Version:1
Title:Security update for tomcat (Important)
Description:

This update for tomcat fixes the following issues:

- CVE-2021-24122: Fixed an information disclosure if resources are served from the NTFS file system (bsc#1180947). - CVE-2021-25122: Apache Tomcat h2c request mix-up (bsc#1182912) - CVE-2021-25329: Complete fix for CVE-2020-9484 (bsc#1182909)
Family:unixClass:patch
Status:Reference(s):1180947
1182909
1182912
CVE-2021-24122
CVE-2021-25122
CVE-2021-25329
SUSE-SU-2021:1009-1
Platform(s):SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • SUSE Manager Server 4.0 is installed
  • AND Package Information
  • tomcat-9.0.36-4.58.1 is installed
  • OR tomcat-admin-webapps-9.0.36-4.58.1 is installed
  • OR tomcat-el-3_0-api-9.0.36-4.58.1 is installed
  • OR tomcat-jsp-2_3-api-9.0.36-4.58.1 is installed
  • OR tomcat-lib-9.0.36-4.58.1 is installed
  • OR tomcat-servlet-4_0-api-9.0.36-4.58.1 is installed
  • OR tomcat-webapps-9.0.36-4.58.1 is installed
    • BACK