VYPR

rpm package

suse/tomcat&distro=SUSE Linux Enterprise Server 12 SP3

pkg:rpm/suse/tomcat&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3

Vulnerabilities (11)

  • CVE-2018-11784MedOct 4, 2018
    affected < 8.0.53-29.16.2fixed 8.0.53-29.16.2

    When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to a directory (e.g. redirecting to '/foo/' when the user requested '/foo') a specially crafted URL could be used to cause the redirect to be generated

  • CVE-2018-8037MedAug 2, 2018
    affected < 8.0.53-29.13.1fixed 8.0.53-29.13.1

    If an async request was completed by the application at the same time as the container triggered the async timeout, a race condition existed that could result in a user seeing a response intended for a different user. An additional issue was present in the NIO and NIO2 connectors

  • CVE-2018-1336HigAug 2, 2018
    affected < 8.0.53-29.13.1fixed 8.0.53-29.13.1

    An improper handing of overflow in the UTF-8 decoder with supplementary characters can lead to an infinite loop in the decoder causing a Denial of Service. Versions Affected: Apache Tomcat 9.0.0.M9 to 9.0.7, 8.5.0 to 8.5.30, 8.0.0.RC1 to 8.0.51, and 7.0.28 to 7.0.86.

  • CVE-2018-8034HigAug 1, 2018
    affected < 8.0.53-29.13.1fixed 8.0.53-29.13.1

    The host name verification when using TLS with the WebSocket client was missing. It is now enabled by default. Versions Affected: Apache Tomcat 9.0.0.M1 to 9.0.9, 8.5.0 to 8.5.31, 8.0.0.RC1 to 8.0.52, and 7.0.35 to 7.0.88.

  • CVE-2018-8014CriMay 16, 2018
    affected < 8.0.53-29.13.1fixed 8.0.53-29.13.1

    The defaults settings for the CORS filter provided in Apache Tomcat 9.0.0.M1 to 9.0.8, 8.5.0 to 8.5.31, 8.0.0.RC1 to 8.0.52, 7.0.41 to 7.0.88 are insecure and enable 'supportsCredentials' for all origins. It is expected that users of the CORS filter will have configured it approp

  • CVE-2018-1304MedFeb 28, 2018
    affected < 8.0.50-29.8.2fixed 8.0.50-29.8.2

    The URL pattern of "" (the empty string) which exactly maps to the context root was not correctly handled in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 when used as part of a security constraint definition. This caused the constraint

  • CVE-2018-1305MedFeb 23, 2018
    affected < 8.0.50-29.8.2fixed 8.0.50-29.8.2

    Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. Because security constraints defined in this way apply to the URL pattern and any

  • CVE-2017-15706MedJan 31, 2018
    affected < 8.0.50-29.8.2fixed 8.0.50-29.8.2

    As part of the fix for bug 61201, the documentation for Apache Tomcat 9.0.0.M22 to 9.0.1, 8.5.16 to 8.5.23, 8.0.45 to 8.0.47 and 7.0.79 to 7.0.82 included an updated description of the search algorithm used by the CGI Servlet to identify which script to execute. The update was no

  • CVE-2017-12617HigKEVOct 4, 2017
    affected < 8.0.43-29.5.1fixed 8.0.43-29.5.1

    When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and 7.0.0 to 7.0.81 with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default servlet to false) it was possible to upload a JSP file to the server via a

  • CVE-2017-7674MedAug 11, 2017
    affected < 8.0.43-29.5.1fixed 8.0.43-29.5.1

    The CORS Filter in Apache Tomcat 9.0.0.M1 to 9.0.0.M21, 8.5.0 to 8.5.15, 8.0.0.RC1 to 8.0.44 and 7.0.41 to 7.0.78 did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.

  • CVE-2017-5664HigJun 6, 2017
    affected < 8.0.43-29.5.1fixed 8.0.43-29.5.1

    The error page mechanism of the Java Servlet Specification requires that, when an error occurs and an error page is configured for the error that occurred, the original request and response are forwarded to the error page. This means that the request is presented to the error pag