Security update for tomcat (important)

2017-05-1018:10:03

lists.opensuse.org

0.009 Low

EPSS

Percentile

81.0%

JSON

This update for tomcat fixes the following issues:

  - CVE-2017-5647 Pipelined requests could lead to information disclosure
    (bsc#1033448)
  - CVE-2017-5648 Untrusted application could retain listener leading to
    information disclosure (bsc#1033447)
  - CVE-2016-8745 shared Processor on Connector code could lead to
    information disclosure (bsc#1015119)

OSVersionArchitecturePackageVersionFilename
SUSE Linux Enterprise Server for Raspberry Pi12.2noarchtomcat-jsp-2_3-api< 8.0.43-23.1tomcat-jsp-2_3-api-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server12.2noarchtomcat-el-3_0-api< 8.0.43-23.1tomcat-el-3_0-api-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server for Raspberry Pi12.2noarchtomcat-javadoc< 8.0.43-23.1tomcat-javadoc-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server for Raspberry Pi12.2noarchtomcat-el-3_0-api< 8.0.43-23.1tomcat-el-3_0-api-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server12.2noarchtomcat-admin-webapps< 8.0.43-23.1tomcat-admin-webapps-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server for Raspberry Pi12.2noarchtomcat-admin-webapps< 8.0.43-23.1tomcat-admin-webapps-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server12.2noarchtomcat-lib< 8.0.43-23.1tomcat-lib-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server12.2noarchtomcat-servlet-3_1-api< 8.0.43-23.1tomcat-servlet-3_1-api-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server12.2noarchtomcat-javadoc< 8.0.43-23.1tomcat-javadoc-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server12.2noarchtomcat< 8.0.43-23.1tomcat-8.0.43-23.1.noarch.rpm

OS	Version	Architecture	Package	Version	Filename
SUSE Linux Enterprise Server for Raspberry Pi	12.2	noarch	tomcat-jsp-2_3-api	< 8.0.43-23.1	tomcat-jsp-2_3-api-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server	12.2	noarch	tomcat-el-3_0-api	< 8.0.43-23.1	tomcat-el-3_0-api-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server for Raspberry Pi	12.2	noarch	tomcat-javadoc	< 8.0.43-23.1	tomcat-javadoc-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server for Raspberry Pi	12.2	noarch	tomcat-el-3_0-api	< 8.0.43-23.1	tomcat-el-3_0-api-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server	12.2	noarch	tomcat-admin-webapps	< 8.0.43-23.1	tomcat-admin-webapps-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server for Raspberry Pi	12.2	noarch	tomcat-admin-webapps	< 8.0.43-23.1	tomcat-admin-webapps-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server	12.2	noarch	tomcat-lib	< 8.0.43-23.1	tomcat-lib-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server	12.2	noarch	tomcat-servlet-3_1-api	< 8.0.43-23.1	tomcat-servlet-3_1-api-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server	12.2	noarch	tomcat-javadoc	< 8.0.43-23.1	tomcat-javadoc-8.0.43-23.1.noarch.rpm
SUSE Linux Enterprise Server	12.2	noarch	tomcat	< 8.0.43-23.1	tomcat-8.0.43-23.1.noarch.rpm