Oval Definition:oval:org.opensuse.security:def:93772
Revision Date:2021-11-16Version:1
Title: (Moderate)
Description:

This update for tomcat fixes the following issues:

- CVE-2021-30640: Escape parameters in JNDI Realm queries (bsc#1188279). - CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients (bsc#1188278). - CVE-2021-41079: Fixed a denial of service caused by an unexpected TLS packet (bsc#1190558).
Family:unixClass:patch
Status:Reference(s):1188278
1188279
1190558
CVE-2013-2001
CVE-2021-30640
CVE-2021-33037
CVE-2021-41079
Platform(s):Image SLES15-SP4-Manager-Server-4-3-BYOS
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libXxf86vm-devel-1.1.4-1.23 is installed
  • OR libXxf86vm1-1.1.4-1.23 is installed
  • OR libXxf86vm1-32bit-1.1.4-1.23 is installed
    • Definition Synopsis
  • Image SLES15-SP4-Manager-Server-4-3-BYOS is installed
  • AND Package Information
  • tomcat-9.0.36-13.1 is installed
  • OR tomcat-el-3_0-api-9.0.36-13.1 is installed
  • OR tomcat-jsp-2_3-api-9.0.36-13.1 is installed
  • OR tomcat-lib-9.0.36-13.1 is installed
  • OR tomcat-servlet-4_0-api-9.0.36-13.1 is installed
    • BACK