Lucene search
Gentoo FoundationMGASA-2020-0397HistoryOct 30, 2020 - 1:25 a.m.
Updated tomcat packages fix a security vulnerability
2020-10-3001:25:06
Gentoo Foundation
advisories.mageia.org
10
0.001 Low
EPSS
Percentile
41.6%
If an HTTP/2 client exceeded the agreed maximum number of concurrent streams for a connection (in violation of the HTTP/2 protocol), it was possible that a subsequent request made on that connection could contain HTTP headers - including HTTP/2 pseudo headers - from a previous request rather than the intended headers. This could lead to users seeing responses for unexpected resources (CVE-2020-13943).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 7 | noarch | tomcat | < 9.0.38-1 | tomcat-9.0.38-1.mga7 |
Related
ibm
ibm
osv
osv
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat
2022-02-09 23:03:53
tomcat8 - security update
2020-10-14 00:00:00
CVE-2020-13943
2020-10-12 14:15:12
prion
prion
Cross site request forgery (csrf)
2020-10-12 14:15:00
ubuntucve
ubuntucve
CVE-2020-13943
2020-10-12 00:00:00
nessus
nessus
openSUSE Security Update : tomcat (openSUSE-2020-1842)
2020-11-06 00:00:00
Apache Tomcat 8.5.x < 8.5.58 / 9.0.x < 9.0.38 HTTP/2 Request Mix-Up
2020-10-14 00:00:00
Photon OS 1.0: Apache PHSA-2020-1.0-0338
2020-11-19 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2020-0397)
2022-01-28 00:00:00
openSUSE: Security Advisory for tomcat (openSUSE-SU-2020:1799-1)
2020-11-03 00:00:00
Apache Tomcat HTTP/2 Vulnerability (Oct 2020) - Linux
2020-10-20 00:00:00
cisa
cisa
Apache Releases Security Updates for Apache Tomcat
2020-10-14 00:00:00
github
github
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat
2022-02-09 23:03:53
debiancve
debiancve
CVE-2020-13943
2020-10-12 14:15:00
atlassian
atlassian
Jira is affected by Tomcat CVE-2020-13943
2021-08-16 03:40:01
Jira is affected by Tomcat CVE-2020-13943
2021-08-16 03:40:01
Upgrade the bundled version of Apache Tomcat to 8.5.68 or later
2021-07-14 11:35:20
kaspersky
kaspersky
KLA12085 SUI vulnerability in Apache Tomcat
2020-09-15 00:00:00
f5
f5
K31573032 : Tomcat vulnerability CVE-2020-13943
2020-10-20 00:00:00
veracode
veracode
HTTP/2 Request Mix-up
2020-10-13 01:45:40
Information Disclosure
2020-10-13 04:49:31
cvelist
cvelist
CVE-2020-13943
2020-10-12 13:46:47
tomcat
tomcat
Fixed in Apache Tomcat 10.0.0-M8
2020-09-14 00:00:00
Fixed in Apache Tomcat 8.5.58
2020-09-15 00:00:00
Fixed in Apache Tomcat 9.0.38
2020-09-15 00:00:00
redhatcve
redhatcve
CVE-2020-13943
2020-10-13 20:19:36
suse
suse
Security update for tomcat (moderate)
2020-11-06 00:00:00
Security update for tomcat (moderate)
2020-11-01 00:00:00
debian
debian
[SECURITY] [DLA 2407-1] tomcat8 security update
2020-10-14 12:05:22
[SECURITY] [DSA 4835-1] tomcat9 security update
2021-01-22 18:49:04
cve
cve
CVE-2020-13943
2020-10-12 14:15:00
photon
photon
Critical Photon OS Security Update - PHSA-2020-0161
2020-11-07 00:00:00
Critical Photon OS Security Update - PHSA-2020-3.0-0161
2020-11-07 00:00:00
redhat
redhat
(RHSA-2021:0495) Moderate: Red Hat JBoss Web Server 5.4.1 Security Update
2021-02-11 13:46:15
(RHSA-2021:0494) Moderate: Red Hat JBoss Web Server 5.4.1 Security Update
2021-02-11 13:39:58
ubuntu
ubuntu
Tomcat vulnerabilities
2022-03-31 00:00:00
symantec
symantec
Apache Tomcat Vulnerabilities May 2020 - Mar 2021
2021-03-16 19:59:07
oracle
oracle
Oracle Critical Patch Update Advisory - April 2021
2021-04-20 00:00:00