Lucene search
DebianDEBIAN:DSA-4281-1:42CC4HistoryAug 29, 2018 - 6:29 a.m.
[SECURITY] [DSA 4281-1] tomcat8 security update
2018-08-2906:29:28
lists.debian.org
13
0.018 Low
EPSS
Percentile
88.4%
Debian Security Advisory DSA-4281-1 [email protected]
https://www.debian.org/security/ Sebastien Delafond
August 29, 2018 https://www.debian.org/security/faq
Package : tomcat8
CVE ID : CVE-2018-1304 CVE-2018-1305 CVE-2018-1336 CVE-2018-8034
CVE-2018-8037
Debian Bug : 867247
Several issues were discovered in the Tomcat servlet and JSP
engine. They could lead to unauthorized access to protected resources,
denial-of-service, or information leak.
For the stable distribution (stretch), these problems have been fixed in
version 8.5.14-1+deb9u3.
We recommend that you upgrade your tomcat8 packages.
For the detailed security status of tomcat8 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/tomcat8
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: [email protected]
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | libtomcat8-java | < 8.5.14-1+deb9u3 | libtomcat8-java_8.5.14-1+deb9u3_all.deb |
| Debian | 9 | all | libservlet3.1-java-doc | < 8.5.14-1+deb9u3 | libservlet3.1-java-doc_8.5.14-1+deb9u3_all.deb |
| Debian | 7 | all | tomcat7-docs | < 7.0.28-4+deb7u18 | tomcat7-docs_7.0.28-4+deb7u18_all.deb |
| Debian | 9 | all | tomcat8 | < 8.5.14-1+deb9u3 | tomcat8_8.5.14-1+deb9u3_all.deb |
| Debian | 9 | all | tomcat8-docs | < 8.5.14-1+deb9u3 | tomcat8-docs_8.5.14-1+deb9u3_all.deb |
| Debian | 8 | all | tomcat7-docs | < 7.0.56-3+really7.0.88-1 | tomcat7-docs_7.0.56-3+really7.0.88-1_all.deb |
| Debian | 7 | all | tomcat7-user | < 7.0.28-4+deb7u18 | tomcat7-user_7.0.28-4+deb7u18_all.deb |
| Debian | 8 | all | tomcat8-user | < 8.0.14-1+deb8u12 | tomcat8-user_8.0.14-1+deb8u12_all.deb |
| Debian | 8 | all | tomcat7-admin | < 7.0.56-3+really7.0.88-1 | tomcat7-admin_7.0.56-3+really7.0.88-1_all.deb |
| Debian | 8 | all | tomcat7-docs | < 7.0.56-3+really7.0.90-1 | tomcat7-docs_7.0.56-3+really7.0.90-1_all.deb |
Related
debian
debian
[SECURITY] [DSA 4281-1] tomcat8 security update
2018-08-29 06:29:28
[SECURITY] [DLA 1491-1] tomcat8 security update
2018-09-02 20:26:25
[SECURITY] [DLA 1301-1] tomcat7 security update
2018-03-06 13:24:42
openvas
openvas
Debian: Security Advisory (DSA-4281-1)
2018-08-28 00:00:00
Huawei EulerOS: Security Advisory for tomcat (EulerOS-SA-2019-2675)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for tomcat (EulerOS-SA-2019-1992)
2020-01-23 00:00:00
nessus
nessus
Debian DSA-4281-1 : tomcat8 - security update
2018-08-30 00:00:00
EulerOS 2.0 SP3 : tomcat (EulerOS-SA-2019-2675)
2019-12-18 00:00:00
EulerOS 2.0 SP5 : tomcat (EulerOS-SA-2019-1992)
2019-09-24 00:00:00
osv
osv
tomcat8 - security update
2018-08-29 00:00:00
tomcat8 - security update
2018-09-02 00:00:00
tomcat8 - security update
2018-07-29 00:00:00
thn
thn
Apache Tomcat Patches Important Security Vulnerabilities
2018-07-24 11:36:00
suse
suse
Security update for tomcat (moderate)
2018-09-17 12:12:40
Security update for tomcat (moderate)
2018-10-06 18:10:05
amazon
amazon
Important: tomcat8
2018-08-09 16:12:00
Medium: tomcat7, tomcat8
2018-03-21 22:06:00
Important: tomcat
2020-03-09 19:23:00
redhat
redhat
centos
centos
tomcat security update
2019-08-30 04:27:31
tomcat security update
2018-10-16 16:57:41
tomcat
tomcat
Fixed in Apache Tomcat 9.0.10
2018-06-25 00:00:00
Fixed in Apache Tomcat 9.0.5
2018-02-11 00:00:00
Fixed in Apache Tomcat 7.0.85
2018-02-13 00:00:00
ubuntu
ubuntu
Tomcat vulnerabilities
2018-07-25 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: tomcat-8.5.35-1.fc28
2019-04-03 02:02:31
[SECURITY] Fedora 26 Update: tomcat-8.0.50-1.fc26
2018-04-04 16:47:53
[SECURITY] Fedora 27 Update: tomcat-8.0.50-1.fc27
2018-04-04 17:10:49
kaspersky
kaspersky
KLA11297 Multiple vulnerabilities in Apache Tomcat
2018-07-22 00:00:00
KLA11203 Multiple vulnerabilities in Apache Tomcat
2018-02-13 00:00:00
KLA11597 DoS vulnerability in Apache Tomcat
2018-05-03 00:00:00
ibm
ibm
cisa
cisa
Apache Releases Security Updates for Apache Tomcat
2018-07-23 00:00:00
symantec
symantec
Apache Tomcat Vulnerabilities Jan-Aug 2018
2018-10-11 08:01:01
Apache Tomcat CVE-2018-8037 Information Disclosure Vulnerability
2018-07-22 00:00:00
freebsd
freebsd
tomcat -- Security constraints ignored or applied too late
2018-02-23 00:00:00
photon
photon
oraclelinux
oraclelinux
tomcat security, bug fix, and enhancement update
2019-08-13 00:00:00
pki-deps:10.6 security update
2019-07-30 00:00:00
tomcat security update
2018-10-16 00:00:00
atlassian
atlassian
Upgrade to Tomcat 8.5.32 necessary
2018-08-01 09:33:53
mageia
mageia
Updated tomcat packages fix security vulnerabilities
2018-02-28 16:55:21
Updated tomcat packages fix security vulnerabilities
2018-12-10 00:20:39
rocky
rocky
pki-deps:10.6 security update
2019-06-18 16:36:21
almalinux
almalinux
Important: pki-deps:10.6 security update
2019-06-18 16:36:21
ubuntucve
ubuntucve
nvd
nvd
f5
f5
K34468163 : Apache Tomcat vulnerability CVE-2018-8034
2018-09-05 00:00:00
K98776835 : Apache Tomcat vulnerability - CVE-2018-8037
2018-09-05 00:00:00
K73008537 : Apache Tomcat vulnerability CVE-2018-1336
2018-09-10 00:00:00
debiancve
debiancve
veracode
veracode
Insecure Defaults
2018-07-23 05:27:23
Information Disclosure
2018-07-23 06:35:16
Denial Of Service (DoS)
2019-01-15 09:26:11
cve
cve
github
github
Apache Tomcat Race Condition vulnerability
2018-10-17 16:33:02
In Apache Tomcat there is an improper handing of overflow in the UTF-8 decoder
2018-10-17 16:32:18
The host name verification missing in Apache Tomcat
2018-10-17 16:32:43
prion
prion
Race condition
2018-08-02 14:29:00
Design/Logic Flaw
2018-08-01 18:29:00
Design/Logic Flaw
2018-08-02 14:29:00
cvelist
cvelist
redhatcve
redhatcve
seebug
seebug
Apache Tomcat Security Bypass Vulnerability(CVE-2018-1305)
2018-02-27 00:00:00