(RHSA-2013:0005) Important: tomcat6 security update

2013-01-0322:47:24

access.redhat.com

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

65.6%

JSON

Apache Tomcat is a servlet container.

It was found that when an application used FORM authentication, along with
another component that calls request.setUserPrincipal() before the call to
FormAuthenticator#authenticate() (such as the Single-Sign-On valve), it was
possible to bypass the security constraint checks in the FORM authenticator
by appending “/j_security_check” to the end of a URL. A remote attacker
with an authenticated session on an affected application could use this
flaw to circumvent authorization controls, and thereby access resources not
permitted by the roles associated with their authenticated session.
(CVE-2012-3546)

Warning: Before applying the update, back up your existing JBoss Enterprise
Web Server installation (including all applications and configuration
files).

Users of Tomcat should upgrade to these updated packages, which resolve
this issue. Tomcat must be restarted for this update to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat6noarchtomcat6-jsp-2.1-api< 6.0.35-25_patch_01.ep6.el6tomcat6-jsp-2.1-api-6.0.35-25_patch_01.ep6.el6.noarch.rpm
RedHat5noarchtomcat6-el-1.0-api< 6.0.35-6_patch_02.ep6.el5tomcat6-el-1.0-api-6.0.35-6_patch_02.ep6.el5.noarch.rpm
RedHat6noarchtomcat6< 6.0.35-25_patch_01.ep6.el6tomcat6-6.0.35-25_patch_01.ep6.el6.noarch.rpm
RedHat5noarchtomcat6-docs-webapp< 6.0.35-6_patch_02.ep6.el5tomcat6-docs-webapp-6.0.35-6_patch_02.ep6.el5.noarch.rpm
RedHat6noarchtomcat6-webapps< 6.0.35-25_patch_01.ep6.el6tomcat6-webapps-6.0.35-25_patch_01.ep6.el6.noarch.rpm
RedHat5noarchtomcat6-webapps< 6.0.35-6_patch_02.ep6.el5tomcat6-webapps-6.0.35-6_patch_02.ep6.el5.noarch.rpm
RedHat6noarchtomcat6-admin-webapps< 6.0.35-25_patch_01.ep6.el6tomcat6-admin-webapps-6.0.35-25_patch_01.ep6.el6.noarch.rpm
RedHat5noarchtomcat6-servlet-2.5-api< 6.0.35-6_patch_02.ep6.el5tomcat6-servlet-2.5-api-6.0.35-6_patch_02.ep6.el5.noarch.rpm
RedHat5noarchtomcat6-log4j< 6.0.35-6_patch_02.ep6.el5tomcat6-log4j-6.0.35-6_patch_02.ep6.el5.noarch.rpm
RedHat6noarchtomcat6-lib< 6.0.35-25_patch_01.ep6.el6tomcat6-lib-6.0.35-25_patch_01.ep6.el6.noarch.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	6	noarch	tomcat6-jsp-2.1-api	< 6.0.35-25_patch_01.ep6.el6	tomcat6-jsp-2.1-api-6.0.35-25_patch_01.ep6.el6.noarch.rpm
RedHat	5	noarch	tomcat6-el-1.0-api	< 6.0.35-6_patch_02.ep6.el5	tomcat6-el-1.0-api-6.0.35-6_patch_02.ep6.el5.noarch.rpm
RedHat	6	noarch	tomcat6	< 6.0.35-25_patch_01.ep6.el6	tomcat6-6.0.35-25_patch_01.ep6.el6.noarch.rpm
RedHat	5	noarch	tomcat6-docs-webapp	< 6.0.35-6_patch_02.ep6.el5	tomcat6-docs-webapp-6.0.35-6_patch_02.ep6.el5.noarch.rpm
RedHat	6	noarch	tomcat6-webapps	< 6.0.35-25_patch_01.ep6.el6	tomcat6-webapps-6.0.35-25_patch_01.ep6.el6.noarch.rpm
RedHat	5	noarch	tomcat6-webapps	< 6.0.35-6_patch_02.ep6.el5	tomcat6-webapps-6.0.35-6_patch_02.ep6.el5.noarch.rpm
RedHat	6	noarch	tomcat6-admin-webapps	< 6.0.35-25_patch_01.ep6.el6	tomcat6-admin-webapps-6.0.35-25_patch_01.ep6.el6.noarch.rpm
RedHat	5	noarch	tomcat6-servlet-2.5-api	< 6.0.35-6_patch_02.ep6.el5	tomcat6-servlet-2.5-api-6.0.35-6_patch_02.ep6.el5.noarch.rpm
RedHat	5	noarch	tomcat6-log4j	< 6.0.35-6_patch_02.ep6.el5	tomcat6-log4j-6.0.35-6_patch_02.ep6.el5.noarch.rpm
RedHat	6	noarch	tomcat6-lib	< 6.0.35-25_patch_01.ep6.el6	tomcat6-lib-6.0.35-25_patch_01.ep6.el6.noarch.rpm