Security update for tomcat (important)

2017-05-2321:11:53

lists.opensuse.org

0.009 Low

EPSS

Percentile

81.0%

JSON

This update for tomcat fixes the following issues:

- CVE-2017-5647 Pipelined requests could lead to information disclosure
  (bsc#1033448)
- CVE-2017-5648 Untrusted application could retain listener leading to
  information disclosure (bsc#1033447)
- CVE-2016-8745 shared Processor on Connector code could lead to
  information disclosure (bsc#1015119)

OSVersionArchitecturePackageVersionFilename
SUSE Linux Enterprise Server12.1noarchtomcat-el-3_0-api< 8.0.43-10.19.1tomcat-el-3_0-api-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server12.1noarchtomcat-docs-webapp< 8.0.43-10.19.1tomcat-docs-webapp-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server12.1noarchtomcat-webapps< 8.0.43-10.19.1tomcat-webapps-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server12.1noarchtomcat< 8.0.43-10.19.1tomcat-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server12.1noarchtomcat-lib< 8.0.43-10.19.1tomcat-lib-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server12.1noarchtomcat-javadoc< 8.0.43-10.19.1tomcat-javadoc-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server12.1noarchtomcat-servlet-3_1-api< 8.0.43-10.19.1tomcat-servlet-3_1-api-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server12.1noarchtomcat-jsp-2_3-api< 8.0.43-10.19.1tomcat-jsp-2_3-api-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server12.1noarchtomcat-admin-webapps< 8.0.43-10.19.1tomcat-admin-webapps-8.0.43-10.19.1.noarch.rpm

OS	Version	Architecture	Package	Version	Filename
SUSE Linux Enterprise Server	12.1	noarch	tomcat-el-3_0-api	< 8.0.43-10.19.1	tomcat-el-3_0-api-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server	12.1	noarch	tomcat-docs-webapp	< 8.0.43-10.19.1	tomcat-docs-webapp-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server	12.1	noarch	tomcat-webapps	< 8.0.43-10.19.1	tomcat-webapps-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server	12.1	noarch	tomcat	< 8.0.43-10.19.1	tomcat-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server	12.1	noarch	tomcat-lib	< 8.0.43-10.19.1	tomcat-lib-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server	12.1	noarch	tomcat-javadoc	< 8.0.43-10.19.1	tomcat-javadoc-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server	12.1	noarch	tomcat-servlet-3_1-api	< 8.0.43-10.19.1	tomcat-servlet-3_1-api-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server	12.1	noarch	tomcat-jsp-2_3-api	< 8.0.43-10.19.1	tomcat-jsp-2_3-api-8.0.43-10.19.1.noarch.rpm
SUSE Linux Enterprise Server	12.1	noarch	tomcat-admin-webapps	< 8.0.43-10.19.1	tomcat-admin-webapps-8.0.43-10.19.1.noarch.rpm