logo
DATABASE RESOURCES PRICING ABOUT US

Important: tomcat6

Description

**Issue Overview:** CVE-2016-6816 tomcat: HTTP Request smuggling vulnerability due to permitting invalid character in HTTP requests CVE-2016-8735 tomcat: Remote code execution vulnerability in JmxRemoteLifecycleListener **Affected Packages:** tomcat6 **Issue Correction:** Run _yum update tomcat6_ to update your system. **New Packages:** noarch:     tomcat6-admin-webapps-6.0.48-1.8.amzn1.noarch     tomcat6-el-2.1-api-6.0.48-1.8.amzn1.noarch     tomcat6-servlet-2.5-api-6.0.48-1.8.amzn1.noarch     tomcat6-javadoc-6.0.48-1.8.amzn1.noarch     tomcat6-jsp-2.1-api-6.0.48-1.8.amzn1.noarch     tomcat6-webapps-6.0.48-1.8.amzn1.noarch     tomcat6-docs-webapp-6.0.48-1.8.amzn1.noarch     tomcat6-lib-6.0.48-1.8.amzn1.noarch     tomcat6-6.0.48-1.8.amzn1.noarch src:     tomcat6-6.0.48-1.8.amzn1.src ### Additional References Red Hat: [CVE-2016-6816](<https://access.redhat.com/security/cve/CVE-2016-6816>), [CVE-2016-8735](<https://access.redhat.com/security/cve/CVE-2016-8735>) Mitre: [CVE-2016-6816](<https://vulners.com/cve/CVE-2016-6816>), [CVE-2016-8735](<https://vulners.com/cve/CVE-2016-8735>)


Affected Package


OS OS Version Package Name Package Version
Amazon Linux 1 tomcat6-admin-webapps 6.0.48-1.8.amzn1
Amazon Linux 1 tomcat6-el-2.1-api 6.0.48-1.8.amzn1
Amazon Linux 1 tomcat6-servlet-2.5-api 6.0.48-1.8.amzn1
Amazon Linux 1 tomcat6-javadoc 6.0.48-1.8.amzn1
Amazon Linux 1 tomcat6-jsp-2.1-api 6.0.48-1.8.amzn1
Amazon Linux 1 tomcat6-webapps 6.0.48-1.8.amzn1
Amazon Linux 1 tomcat6-docs-webapp 6.0.48-1.8.amzn1
Amazon Linux 1 tomcat6-lib 6.0.48-1.8.amzn1
Amazon Linux 1 tomcat6 6.0.48-1.8.amzn1
Amazon Linux 1 tomcat6 6.0.48-1.8.amzn1

Related