tomcat6 security update

🗓️ 20 Jun 2013 17:46:38Reported by CentOS ProjectType

centos

centos🔗 lists.centos.org👁 65 Views

Security update for Apache Tomcat6 FormAuthenticator modul

Reporter	Title	Published	Views	Family All 100
IBM Security Bulletins	Security Bulletin: IBM Disconnected Log Collector is vulnerable to using components with known vulnerabilities	16 Jun 202221:33	–	ibm
IBM Security Bulletins	Security Bulletin: Apache Log4j Vulnerabilities Affect IBM Sterling B2B Integrator	6 Oct 202114:56	–	ibm
Tenable Nessus	Apache Tomcat 6.0.x < 6.0.37 Multiple Vulnerabilities	20 May 201300:00	–	nessus
Tenable Nessus	CentOS 6 : tomcat6 (CESA-2013:0964)	23 Jun 201300:00	–	nessus
Tenable Nessus	Debian DSA-2725-1 : tomcat6 - several vulnerabilities	19 Jul 201300:00	–	nessus
Tenable Nessus	Debian DSA-2897-1 : tomcat7 - security update	9 Apr 201400:00	–	nessus
Tenable Nessus	GLSA-201412-29 : Apache Tomcat: Multiple vulnerabilities	15 Dec 201400:00	–	nessus
Tenable Nessus	Mandriva Linux Security Advisory : tomcat6 (MDVSA-2014:042)	20 Feb 201400:00	–	nessus
Tenable Nessus	MiracleLinux 4 : tomcat6-6.0.24-57.AXS4 (AXSA:2013-491:04)	16 Jan 202600:00	–	nessus
Tenable Nessus	openSUSE Security Update : tomcat (openSUSE-SU-2013:1307-1)	13 Jun 201400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
CentOS	6	noarch	tomcat6	6.0.24-57.el6_4	tomcat6-6.0.24-57.el6_4.noarch.rpm
CentOS	6	noarch	tomcat6-admin-webapps	6.0.24-57.el6_4	tomcat6-admin-webapps-6.0.24-57.el6_4.noarch.rpm
CentOS	6	noarch	tomcat6-docs-webapp	6.0.24-57.el6_4	tomcat6-docs-webapp-6.0.24-57.el6_4.noarch.rpm
CentOS	6	noarch	tomcat6-el-2.1-api	6.0.24-57.el6_4	tomcat6-el-2.1-api-6.0.24-57.el6_4.noarch.rpm
CentOS	6	noarch	tomcat6-javadoc	6.0.24-57.el6_4	tomcat6-javadoc-6.0.24-57.el6_4.noarch.rpm
CentOS	6	noarch	tomcat6-jsp-2.1-api	6.0.24-57.el6_4	tomcat6-jsp-2.1-api-6.0.24-57.el6_4.noarch.rpm
CentOS	6	noarch	tomcat6-lib	6.0.24-57.el6_4	tomcat6-lib-6.0.24-57.el6_4.noarch.rpm
CentOS	6	noarch	tomcat6-servlet-2.5-api	6.0.24-57.el6_4	tomcat6-servlet-2.5-api-6.0.24-57.el6_4.noarch.rpm
CentOS	6	noarch	tomcat6-webapps	6.0.24-57.el6_4	tomcat6-webapps-6.0.24-57.el6_4.noarch.rpm
CentOS	6	noarch	tomcat6	6.0.24-57.el6_4	tomcat6-6.0.24-57.el6_4.noarch.rpm

Source	Link
twitter	www.twitter.com/centos
steadfast	www.steadfast.net/
rhn	www.rhn.redhat.com/errata/RHSA-2013-0964.html
linkedin	www.linkedin.com/groups/22405
youtube	www.youtube.com/TheCentOSProject
facebook	www.facebook.com/groups/centosproject/
reddit	www.reddit.com/r/CentOS/

20 Jun 2013 17:46Current

7.3High risk

Vulners AI Score7.3

CVSS 26.8

EPSS0.10445

centos errata servlet container javaservlet javaserver pages session fixation cve-2013-2067 security advisory tomcat6 redhat advisory