Fixed in Apache Tomcat JK Connector 1.2.42

2016-08-12T00:00:00
ID TOMCAT:54E5F30C915151A89BA5427BF3910461
Type tomcat
Reporter Apache Tomcat
Modified 2016-08-12T00:00:00

Description

Moderate: Buffer Overflow CVE-2016-6808

The IIS/ISAPI specific code implements special handling when a virtual host is present. The virtual host name and the URI are concatenated to create a virtual host mapping rule. The length checks prior to writing to the target buffer for this rule did not take account of the length of the virtual host name, creating the potential for a buffer overflow.

It is not known if this overflow is exploitable.

This was fixed in revision 1762057.

Affects: JK 1.2.0-1.2.41