Lucene search
F5F5:K73008537HistorySep 10, 2018 - 12:00 a.m.
K73008537 : Apache Tomcat vulnerability CVE-2018-1336
2018-09-1000:00:00
my.f5.com
60
Security Advisory Description
An improper handing of overflow in the UTF-8 decoder with supplementary characters can lead to an infinite loop in the decoder causing a Denial of Service. Versions Affected: Apache Tomcat 9.0.0.M9 to 9.0.7, 8.5.0 to 8.5.30, 8.0.0.RC1 to 8.0.51, and 7.0.28 to 7.0.86. (CVE-2018-1336)
Impact
BIG-IP and Traffix SDC
A remote attacker can exploit this vulnerability with carefully crafted data and cause a denial of service (DoS) on the target system.
Enterprise Manager, BIG-IQ, and iWorkflow
There is no impact; these F5 products are not affected by this vulnerability.
Related
tomcat
tomcat
Fixed in Apache Tomcat 8.0.52
2018-05-08 00:00:00
Fixed in Apache Tomcat 9.0.8
2018-05-03 00:00:00
Fixed in Apache Tomcat 8.5.31
2018-05-04 00:00:00
nessus
nessus
F5 Networks BIG-IP : Apache Tomcat vulnerability (K73008537)
2018-12-14 00:00:00
Scientific Linux Security Update : tomcat on SL7.x (noarch) (20181016)
2018-10-17 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : tomcat Vulnerability (NS-SA-2019-0031)
2019-08-12 00:00:00
osv
osv
CVE-2018-1336
2018-08-02 14:29:00
In Apache Tomcat there is an improper handing of overflow in the UTF-8 decoder
2018-10-17 16:32:18
tomcat8 - security update
2018-09-02 00:00:00
oraclelinux
oraclelinux
tomcat security update
2018-10-16 00:00:00
debiancve
debiancve
CVE-2018-1336
2018-08-02 14:29:00
github
github
In Apache Tomcat there is an improper handing of overflow in the UTF-8 decoder
2018-10-17 16:32:18
nvd
nvd
CVE-2018-1336
2018-08-02 14:29:00
openvas
openvas
Apache Tomcat 'UTF-8 Decoder' Denial of Service Vulnerability - Windows
2018-07-24 00:00:00
CentOS Update for tomcat CESA-2018:2921 centos7
2018-10-17 00:00:00
Apache Tomcat 'UTF-8 Decoder' Denial of Service Vulnerability - Linux
2018-07-24 00:00:00
prion
prion
Design/Logic Flaw
2018-08-02 14:29:00
centos
centos
tomcat security update
2018-10-16 16:57:41
cve
cve
CVE-2018-1336
2018-08-02 14:29:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:26:11
Denial Of Service (DoS)
2018-07-23 09:10:43
kaspersky
kaspersky
KLA11597 DoS vulnerability in Apache Tomcat
2018-05-03 00:00:00
redhatcve
redhatcve
CVE-2018-1336
2019-11-02 22:29:19
redhat
redhat
(RHSA-2018:2921) Important: tomcat security update
2018-10-16 07:50:23
amazon
amazon
Important: tomcat
2018-11-07 22:12:00
Important: tomcat7, tomcat80
2018-08-09 16:10:00
Important: tomcat8
2018-08-09 16:12:00
cvelist
cvelist
CVE-2018-1336
2018-07-22 00:00:00
ubuntucve
ubuntucve
CVE-2018-1336
2018-07-24 00:00:00
debian
debian
[SECURITY] [DLA 1491-1] tomcat8 security update
2018-09-02 20:26:25
[SECURITY] [DSA 4281-1] tomcat8 security update
2018-08-29 06:29:28
[SECURITY] [DSA 4281-1] tomcat8 security update
2018-08-29 06:29:28
ubuntu
ubuntu
Tomcat vulnerabilities
2018-07-25 00:00:00
Apache Tomcat 7 vulnerabilities
2021-03-15 00:00:00
cisa
cisa
Apache Releases Security Updates for Apache Tomcat
2018-07-23 00:00:00
atlassian
atlassian
Upgrade to Tomcat 8.5.32 necessary
2018-08-01 09:33:53
thn
thn
Apache Tomcat Patches Important Security Vulnerabilities
2018-07-24 11:36:00
suse
suse
Security update for tomcat (moderate)
2018-09-17 12:12:40
Security update for tomcat (moderate)
2018-10-06 18:10:05
mageia
mageia
Updated tomcat packages fix security vulnerabilities
2018-12-10 00:20:39
photon
photon
fedora
fedora
[SECURITY] Fedora 28 Update: tomcat-8.5.35-1.fc28
2019-04-03 02:02:31
symantec
symantec
Apache Tomcat Vulnerabilities Jan-Aug 2018
2018-10-11 08:01:01
oracle
oracle
Oracle Critical Patch Update Advisory - April 2020
2020-04-14 00:00:00