Oval Definition:	oval:org.opensuse.security:def:94198
Revision Date: 2021-11-16 Version: 1 Title: (Moderate) Description: This update for tomcat fixes the following issues: - CVE-2021-30640: Escape parameters in JNDI Realm queries (bsc#1188279). - CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients (bsc#1188278). - CVE-2021-41079: Fixed a denial of service caused by an unexpected TLS packet (bsc#1190558). Family: unix Class: patch Status: Reference(s): 1188278 1188279 1190558 CVE-2014-3214 CVE-2014-3859 CVE-2014-8500 CVE-2014-8680 CVE-2015-1349 CVE-2015-4620 CVE-2015-5477 CVE-2015-5722 CVE-2015-5986 CVE-2015-8000 CVE-2015-8461 CVE-2015-8704 CVE-2015-8705 CVE-2016-1285 CVE-2016-1286 CVE-2016-2088 CVE-2016-2775 CVE-2016-2776 CVE-2016-8864 CVE-2016-9131 CVE-2016-9147 CVE-2016-9444 CVE-2016-9778 CVE-2017-3135 CVE-2017-3137 CVE-2017-3138 CVE-2017-3140 CVE-2017-3141 CVE-2017-3142 CVE-2017-3143 CVE-2017-3145 CVE-2018-5740 CVE-2018-5743 CVE-2018-5745 CVE-2019-6465 CVE-2019-6471 CVE-2021-30640 CVE-2021-33037 CVE-2021-41079 Platform(s): Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information bind-9.11.2-12.13.2 is installed OR bind-chrootenv-9.11.2-12.13.2 is installed OR bind-doc-9.11.2-12.13.2 is installed Definition Synopsis Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2 is installed AND Package Information tomcat-9.0.36-13.1 is installed OR tomcat-el-3_0-api-9.0.36-13.1 is installed OR tomcat-jsp-2_3-api-9.0.36-13.1 is installed OR tomcat-lib-9.0.36-13.1 is installed OR tomcat-servlet-4_0-api-9.0.36-13.1 is installed
BACK