Download
| Alert*
oval:org.secpod.oval:def:78377
Two vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in denial of service. oval:org.secpod.oval:def:89045755 This update for tomcat, javapackages-tools fixes the following issue: Security issue fixed: - CVE-2021-30640: Escape parameters in JNDI Realm queries . - CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients . - CVE-2021-41079: Fixed a denial of service caused by an unexpected ... oval:org.secpod.oval:def:89045787 This update for tomcat fixes the following issues: - CVE-2021-30640: Escape parameters in JNDI Realm queries . - CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients . - CVE-2021-41079: Fixed a denial of service caused by an unexpected TLS packet . oval:org.secpod.oval:def:89045797 This update for tomcat fixes the following issues: - CVE-2021-30640: Escape parameters in JNDI Realm queries . - CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients . - CVE-2021-41079: Fixed a denial of service caused by an unexpected TLS packet . oval:org.secpod.oval:def:86450 tomcat9: Apache Tomcat 9 - Servlet and JSP engine Several security issues were fixed in Tomcat. oval:org.secpod.oval:def:1601489 A flaw was found in Apache Tomcat. When Tomcat was configured to use NIO+OpenSSL or NIO2+OpenSSL for TLS, a specially crafted packet can trigger an infinite loop, resulting in a denial of service. The highest threat from this vulnerability is to system availability oval:org.secpod.oval:def:605907 Two vulnerabilities were discovered in the Tomcat servlet and JSP engine, which could result in denial of service. oval:org.secpod.oval:def:76187 The host is installed with Apache Tomcat 10.0.0-M1 through 10.0.2, 9.0.0.M1 through 9.0.43 or 8.5.0 through 8.5.63 and is prone to a denial of service vulnerability. A flaw is present in application, which fails to handle a specially crafted packet when tomcat was configured to use NIO+OpenSSL or NI ... oval:org.secpod.oval:def:706379 tomcat9: Apache Tomcat 9 - Servlet and JSP engine Several security issues were fixed in Tomcat. oval:org.secpod.oval:def:89979 The remote host is missing a patch 152511-11 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:89976 The remote host is missing a patch 152510-11 containing a security fix. For more information please visit the reference link. |